Lack of CISA Leadership Amid DHS Shutdown Raises Risks, Cyber Pros Say

CISA’s statutory mandate—to protect the nation’s critical infrastructure from cyber threats—has never been more vital, yet the agency is now operating with roughly 800 of its 2,300 employees while a DHS shutdown leaves another 1,500 on unpaid leave. This staffing crunch forces CISA to prioritize essential monitoring and incident response, effectively putting the development of new defensive tools and long‑term strategic initiatives on hold. The agency’s ability to keep the lights on demonstrates resilience, but the reduced workforce limits depth of analysis and rapid response capacity.

Compounding the staffing strain is the absence of a confirmed director. The stalled nomination of Sean Plankey and the recent congressional grilling of DHS nominee Markwayne Mullin have left CISA without a senior advocate to steer inter‑agency collaboration, set communication tone, and champion funding. Recent alerts—like the Microsoft Intune lockdown recommendation after an Iran‑linked attack on Stryker and patches for Zimbra and SharePoint vulnerabilities—show CISA can still act, but experts warn that fragmented messaging and slower escalation risk leaving both public and private sectors exposed to fast‑moving adversaries such as China, Russia, Iran, and North Korea.

For businesses, the leadership vacuum translates into uncertainty about the consistency and authority of federal cyber guidance. Industry leaders are urging Congress to move quickly on three fronts: confirm a permanent director to give CISA a seat at the Cabinet table, pass a clean funding bill that separates cyber defense from unrelated border policy debates, and codify the agency’s mission to prevent politicization. Until these steps are taken, private organizations should bolster internal threat‑intelligence capabilities and maintain close ties with other federal partners to compensate for potential gaps in CISA’s strategic output.