Trump’s Proposed CISA Cuts Spark Alarm Among Cybersecurity Experts
A federal budget proposal is putting one of the nation’s top cybersecurity agencies on the chopping block, raising alarms about the U.S. government’s readiness to defend against escalating digital threats.
The administration’s fiscal 2027 budget blueprint would reduce funding for the Cybersecurity and Infrastructure Security Agency (CISA), continuing a trend of cuts that could reshape the agency’s mission and capabilities.
In emails to eSecurityPlanet, cybersecurity professionals shared mixed views on the potential impact of the proposed cuts.
“When CISA was created in 2018, it was built on a recognition that cybersecurity is a shared problem that no single organization can solve alone,” said Doc McConnell, head of Policy and Compliance at Finite State.
“The FY2027 budget proposal ties CISA to a refocus away from weaponization and waste, which tracks with a lot of this administration’s stated priorities for the term. This looks like the president’s usual high opening bid before Congress settles the real numbers,” said Aaron Colclough, VP of Operations at Suzu Labs.
“Security leaders must immediately de-risk their dependency on CISA for threat telemetry and sector-specific alerts, instead prioritizing deeper involvement in private Information Sharing and Analysis Centers (ISACs) and direct vendor partnerships,” said John Carberry, Solution Sleuth at Xcape, Inc.
“You don’t cut the fire department and then wonder why buildings burn. CISA isn’t the bureaucratic overhead; for practitioners, it’s the lifeline between government intelligence and the private sector running the infrastructure this country depends on,” said Seemant Sehgal, Founder & CEO at BreachLock.
Inside the proposed CISA funding cuts
The proposed reductions — estimated at up to $707 million, though some documents cite a lower figure of $361 million — would reduce CISA’s funding to just over $2 billion, down from roughly $3 billion at the start of the current administration.
While the exact figure remains unclear due to budget baseline discrepancies tied to the Department of Homeland Security’s funding process, both estimates indicate a substantial contraction in the agency’s resources.
These cuts come at a time when both public- and private-sector organizations are facing a surge in increasingly sophisticated cyber threats targeting critical infrastructure, federal networks, and global supply chains.
What the budget cuts target
According to reporting by CyberScoop, the proposal builds on earlier efforts to scale back CISA, including workforce reductions and the elimination of certain programs.
The administration has framed the changes as a strategic realignment, refocusing CISA on its core mission of federal network defense and critical infrastructure protection while eliminating activities deemed non-essential.
As part of this restructuring, the budget outlines plans to eliminate several functions tied to external engagement, including stakeholder coordination, council management, and international partnerships.
It also reiterates cuts to programs associated with misinformation and information operations, despite prior statements from CISA indicating that many of these initiatives were already limited in scope or had been discontinued in previous years. This repetition has raised questions about whether the proposed savings reflect new reductions or the continuation of earlier policy decisions.
Taken together, these changes signal a shift toward a narrower and more centralized operational focus.
Impact on collaboration and information sharing
However, this approach has sparked concern among cybersecurity professionals and policymakers who argue that effective cyber defense depends heavily on collaboration.
CISA has historically served as a key hub for information sharing among government agencies, private-sector organizations, and international partners.
Scaling back these engagement channels could reduce visibility into emerging threats, delay coordinated responses, and weaken collective defense efforts across sectors. The proposed cuts signal a shift away from a holistic cybersecurity strategy toward a more siloed defense model.
Strengthening federal network protection remains critical. However, modern threats — such as supply chain attacks — often extend beyond organizational and geographic boundaries.
These threats require strong intelligence sharing and cross-sector coordination, which may be harder to sustain with reduced funding and staffing.
How to strengthen cyber resilience
The proposed cuts underscore the importance of strengthening internal cybersecurity resilience, regardless of federal support levels. Some best practice steps include:
- Enhance monitoring, detection, and automation by leveraging EDR, XDR, and SOAR tools to improve visibility and accelerate response times.
- Prioritize patch and vulnerability management by continuously identifying, validating, and remediating security weaknesses across all assets.
- Strengthen identity and access controls by enforcing least privilege, implementing phishing-resistant MFA, and monitoring for identity-based threats.
- Adopt zero-trust principles to continuously verify users and devices while segmenting networks to limit lateral movement.
- Improve incident response readiness by regularly testing incident response plans through attack simulations.
- Expand threat intelligence and collaboration by incorporating commercial, open-source, and industry-sharing sources such as ISACs.
- Increase resilience through strong backup, recovery, and supply chain security practices, including immutable backups and third-party risk management.
The proposed CISA cuts highlight an ongoing debate over the government’s role in cybersecurity and how resources should be allocated to address evolving risks.
As cyber threats become more complex and increasingly tied to geopolitical dynamics, funding decisions around key agencies like CISA remain an important consideration.
However, the proposal is not final. Congress has previously adjusted similar requests, often approving smaller reductions than initially proposed, suggesting the Fiscal Year (FY) 2027 budget will likely reflect a negotiated outcome.
As the threat landscape continues to evolve, policymakers and security leaders will need to balance efficiency with maintaining adequate cybersecurity capabilities.
Editor’s note: This article originally appeared on our sister publication, eSecurityPlanet.
About Author
![[un]prompted 2026 – When Passports Execute: Exploiting AI Driven KYC Pipelines](https://securityboulevard.com/wp-content/uploads/2018/01/TwitterLogo-002.jpg)