The U.S. Department of Homeland Security (DHS) is announcing the availability of $279.9 million in grant funding to further cybersecurity initiatives around the country. DHS is unveiling this Notice of Funding Opportunity (NOFO) as the next installment for a first-of-its-kind federal cybersecurity funding initiative.
The NOFO represents the third year of funding from the State and Local Cybersecurity Grant Program (SLCGP), which delivers funding opportunities to state, local and territorial governments to help reduce cybersecurity risk. The program enables DHS to make targeted investments in agencies to improve the security of critical infrastructure and protect community services through enhanced resilience measures. For Fiscal Year 2024, DHS has committed $300 million to initiatives through this program.
Administered jointly by the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Emergency Management Agency (FEMA), the grant program assists governments in building resilience against evolving cybersecurity threats.
RELATED: DOE awarding $142 million to small businesses for clean energy, cybersecurity research
As the managing agencies, CISA and FEMA will support grant awardees with several services. CISA will serve the program as a subject-matter specialist regarding cybersecurity related issues, while FEMA will be responsible for grant administration, award oversight, financial management and fund execution.
The SLCGP’s NOFO was published Monday on the FEMA GO system portal. All applications for the grant program must be submitted online by Dec. 3 to be considered for full funding.
Eligible applicants for this round of funding include designated state or territory administrative agencies for all 56 U.S. states and territories. For an applicant to complete all eligibility guidelines, states and territories must have fulfilled the SLCGP requirements of having a CISA-approved cybersecurity plan, a cybersecurity planning committee list and a charter.
The program also includes pass-through and cost share requirements applicants should know prior to applying. Pass-throughs, defined as an obligation of the applying entity or entities to impart funds to local units of government or agencies, require applicants to gain local government consents for items, services, capabilities or activities in lieu of funding no later than 10 calendar days after the 45-day pass-through funding is issued.
For single entities applying for SLCGP funds, they must meet a 30% non-federal cost share requirement. Applicants for multi-entity projects require a 20% cost share.
Since the program’s founding in 2021, this funding, part of the Bipartisan Infrastructure Law and established by the State and Local Cybersecurity Improvement Act, represents a portion of the approximately $1 billion allocated to strengthen state, local and territorial cybersecurity capabilities.
“These cyber grants are an investment in the security of our nation’s infrastructure, helping to ensure that communities across the country have the tools they need to defend against cyberattacks,” CISA Director Jen Easterly says. “CISA is proud to offer the SLCGP, helping governments lay a solid foundation for building a sustainable and resilient cybersecurity program for the future.”
Photo by Jefferson Santos on Unsplash