web analytics

CISA cybersecurity workforce faces cuts amid shifting US strategy – Source: www.csoonline.com

cisa-cybersecurity-workforce-faces-cuts-amid-shifting-us-strategy-–-source:-wwwcsoonline.com
Rate this post

Source: www.csoonline.com – Author:

CISA red teams have been dismantled as federal cybersecurity funding faces deep cuts.

The US government’s cybersecurity defenses are under strain after the White House-backed Department of Government Efficiency (DOGE) abruptly terminated key contracts, leading to the dismantling of two red teams within the Cybersecurity and Infrastructure Security Agency (CISA). The move has sparked concerns about the federal government’s ability to defend against cyber threats amid increasing geopolitical tensions.

The layoffs, which affected more than 100 cybersecurity specialists, were disclosed by former CISA penetration tester Christopher Chenoweth, who revealed on LinkedIn that DOGE had scrapped the contract supporting his red team and a second critical team within days.

“On Friday, February 28, 2025, at 1600 hours, the government contract I supported with CISA (Dept of Homeland Security) was terminated due to DOGE,” Chenoweth wrote in the LinkedIn post. “DOGE cut our entire red team and all support roles — over 100 people impacted. The following Wednesday, DOGE cut a second CISA red team also doing mission-critical work.”

These teams were tasked with identifying vulnerabilities in government networks and strengthening national cybersecurity defenses. Their sudden dismissal raises questions about the Biden administration’s cybersecurity strategy and whether budget cuts are compromising national security.

Chenoweth is not the only one to go vocal about what is happening at CISA.

“The treatment that we are being given right now is enough to cause me and my family soul-crushing loss,” Kelly Shaw, a former employee of CISA wrote in another LinkedIn post. “Our dreams are being shattered, our livelihood is being destroyed, and our nation will be less secure all because of some quick political points being scored.”

Shaw had joined CISA from Naval Intelligence three years ago and was part of the CyberSentry program. More than 130 people from this division were fired in the last week of February.

“On February 14th, I received an email from someone I had never heard of telling me that I was not meeting the needed knowledge, skills, and abilities,” Shaw narrated. “My 30 years of network experience, two Internet Service provider businesses, 14 years of federal service to the Nation, education, and performance appraisals say otherwise.”

Jen Easterly, the former director of CISA, too had raised concerns about what is happening at the premier cybersecurity agency.

“As I understand it (and to be fair, it is an imperfect understanding from someone who is now on the outside), some folks have been justifiably let go for performance reasons and exceptions have been made for others,” Easterly wrote in a LinkedIn post. “But as I’ve seen across this platform over the past week, the exceptions are not preventing some fantastic teammates from being fired.”

Sweeping cuts across Homeland Security

DOGE, an oversight unit established by Elon Musk and endorsed by the Trump administration, has been aggressively eliminating federal contracts, claiming to reduce government waste. While its public records list 86 canceled contracts at the Department of Homeland Security (DHS), it does not explicitly mention penetration testing, leaving uncertainty over the justification behind the cybersecurity team layoffs.

Adding to concerns, other critical cybersecurity programs have also been defunded, including the Elections Infrastructure Information Sharing and Analysis Center (EI-ISAC). The center, which provided cyber threat intelligence to election officials and state agencies, announced its closure after DHS pulled its funding.

Meanwhile, the Multi-State Information Sharing and Analysis Center (MS-ISAC), a 20-year-old cybersecurity collaboration hub between federal, state, and local governments, is also at risk of losing support.

A shift in US cybersecurity strategy?

Analysts suggest these layoffs and funding cuts indicate a broader strategic shift in the U.S. government’s cybersecurity approach. Neil Shah, VP at Counterpoint Research, sees both risks and opportunities in the restructuring.

“In the near to mid-term, this could weaken the US cybersecurity infrastructure. However, with AI proliferating, the US government likely has a Plan B — potentially shifting toward privatized cybersecurity infrastructure projects, similar to what we’re seeing with Project Stargate for AI,” Shah said.

“If these gaps aren’t filled with viable alternatives, vulnerabilities could escalate from small-scale exploits to large-scale cyber incidents at state or federal levels. Signs point to a broader cybersecurity strategy reboot, with funding likely being redirected toward more efficient and sophisticated players rather than a purely vertical, government-led approach.”

While some fear heightened risks, others argue the shift could lead to more tech-driven solutions. Faisal Kawoosa, founder and lead analyst at Techarc, views the move as part of a larger digital transformation.

“Elon Musk’s role is not just about cost-cutting but also about leveraging technology to create more efficient systems,” Kawoosa said. “DOGE operates as a digital transformation program for US governance, exploring tech-first approaches to achieving similar or better results.”

He added that such a significant decision was unlikely without an impact assessment. “I don’t foresee a major security threat arising from this shift. While initial gaps may appear, given Musk’s rapid execution style, it won’t take long for a new system to deliver comparable or improved outcomes.”

Yugal Joshi, a partner at Everest Group, expressed skepticism over dismantling key cybersecurity initiatives amid increasing global threats.

“Given the polarizing and increasingly vulnerable global environment, it is hard to believe the US government is dismantling such key organizations,” Joshi said. “Critical infrastructure across the globe, especially in the US, faces constant threats, and CISA’s red team played a crucial role in defense. Winding up CISA’s red team and MS-ISAC may cause more harm than shutting down EI-ISAC, given their broader and more critical roles.”

While he warned of long-term consequences, Joshi acknowledged a possible silver lining. “This move could be detrimental in the long run. However, an overlap of federal and state cybersecurity responsibilities might make states better prepared — if they receive adequate funding. It could also lead to a more accountable approach, reducing unchecked spending.”

He further noted that should a major cyber incident occur, it would serve as a validation of CISA’s importance. “If something significant happens, it will prove to critics that these departments were indeed creating value, something that was always under scrutiny.” As the federal government continues its restructuring under DOGE’s directive, the long-term consequences of these cybersecurity cutbacks remain uncertain. Security experts warn that the US could be significantly more vulnerable to evolving cyber threats, unless new systems swiftly bridge the gaps left behind.

SUBSCRIBE TO OUR NEWSLETTER

From our editors straight to your inbox

Get started by entering your email address below.

Original Post url: https://www.csoonline.com/article/3844047/cisa-cybersecurity-workforce-faces-cuts-amid-shifting-us-strategy.html

Category & Tags: Penetration Testing, Security – Penetration Testing, Security

Views: 3

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post

Nathalie Cole
How Much 10 Companies Paid Their Virtual CISO Service in 2022 Benchmark by Nathaniel Cole
How Much 10 Companies Paid...
Tushar Subhra Dutta
Top 10 Cyber Attack Maps to See Digital Threats 2022 by Tushar Subhra Dutta – Cyber Security News.
Top 10 Cyber Attack Maps...
Microsoft
Microsoft Zero Trust Maturity Model
Microsoft Zero Trust Maturity Model
US Deparment of Defense
DevSecOps Fundamentals Guidebook – Tools & Activities by American Deparment of Defense
DevSecOps Fundamentals Guidebook – Tools...
HADESS
DevSecOps Guides – Comprehensive resource for integrating security into the software development by HADESS
DevSecOps Guides – Comprehensive resource...
Microsoft
Microsoft 365 and the NIST Cybersecurity Framework
Microsoft 365 and the NIST...
Vendict
The 2024 CISO Burnout Report by Vendict
The 2024 CISO Burnout Report...
Mohammad Alkhudari
Cybersecurity Strong Strategy step by step Guide collected by Mohammad Alkhudari 2024
Cybersecurity Strong Strategy step by...
Marcos Jaimovich
The Silent Spectre Haunting Your Network: QPhishing, the CISO’s Unspoken Nightmare.
The Silent Spectre Haunting Your...
Marcos Jaimovich
Goodbye to Traditional: Why Conventional Cybersecurity Tools are No Longer Sufficient for the Future of Digital Threats ?
Goodbye to Traditional: Why Conventional...
Marcos Jaimovich
Why do we compare a SOC (Security Operations Center) with the cockpit of a commercial airplane? by Marcos Jaimovich
Why do we compare a...
Joas Antonio
Security Operations Center (SOC) – Tools for Operations Development by Joas Antonio
Security Operations Center (SOC) –...

LASTEST PUBLISHED POSTS

Cyberint
Retail Threat Landscape Report Q1-Q3 – November 2024 Summary by Cyberint a Check Point Company
Retail Threat Landscape Report Q1-Q3...
NCSC
Protecting Critical Supply Chains – A Guide to Securing your Supply Chain Ecosystem
Protecting Critical Supply Chains –...
Culture AI
Time to Adapt – The State of Human Risk Management in 2024 by Culture AI.
Time to Adapt – The...
National Cyber Security Centre
Engaging with Boards to improve the management of cyber security risk.
Engaging with Boards to improve...
Microsoft Security
2024 State of Multicloud Security Report by Microsoft Security
2024 State of Multicloud Security...
bugcrowd
Inside the Mind of a CISO 2024 The Evolving Roles of Security Leaders 2024 by bugcrowd
Inside the Mind of a...
Mohammad Alkhudari
Cybersecurity Strong Strategy step by step Guide collected by Mohammad Alkhudari 2024
Cybersecurity Strong Strategy step by...
Lacework
CISO’s Playbookto Cloud Security by Lacework
CISO’s Playbookto Cloud Security by...
MITRE - Carson Zimmerman
Ten Strategies of a World-Class Cybersecurity Operations Center by MITRE
Ten Strategies of a World-Class...
SILVERFRONT - AIG
Identity Has Become the Prime Target of Threat Actors by Silverfort AIG.
Identity Has Become the Prime...
CYZEA.IO
Enterprise Information Security
Enterprise Information Security
IGNITE Technologies
ENCRYPTED REVERSE
ENCRYPTED REVERSE

More Latest Published Posts

WORLD BANK GROUP
Global Cybersecurity Capacity Program
Global Cybersecurity Capacity Program
Gary Hinson
Getting started withsecurity metrics
Getting started withsecurity metrics
EDPS
Generative AI and the EUDPR.
Generative AI and the EUDPR.
Bright
2024 Guide to Application Security Testing Tools
2024 Guide to Application Security Testing Tools
HADESS
Hacker Culture
Hacker Culture
Quuensland Govermment
RISK ASSESSMENT PROCESS HANDBOOK
RISK ASSESSMENT PROCESS HANDBOOK
Ministry of MOS Security
HIPAA SIMPLIFIED
HIPAA SIMPLIFIED
Hacker Combat
How Are Passwords Cracked?
How Are Passwords Cracked?
CIS - Center for Internet Security
How to Plan a Cybersecurity Roadmap in Four Steps
How to Plan a Cybersecurity Roadmap in Four Steps
ACSC Australia
Information Security Manual
Information Security Manual
Kaspersky
Incident Response Playbook: Dark Web Breaches
Incident Response Playbook: Dark Web Breaches
ninjaOne
Endpoint Hardening Checklist
Endpoint Hardening Checklist
HADESS
Important Active Directory Attribute
Important Active Directory Attribute
ISA GLOBAL CYBERSECURITY ALLIANCE
IIoT System Implementation and Certification Based on ISA/IEC 62443 Standards
IIoT System Implementation and Certification Based on ISA/IEC 62443 Standards
Rajneesh Gupta
IAM Security CHECKLIST
IAM Security CHECKLIST
sqrrl
Hunt Evil
Hunt Evil
Searchinform
How to protect personal data and comply with regulations
How to protect personal data and comply with regulations
Giuseppe Manco
Threat Intelligence Platforms
Threat Intelligence Platforms
CSA Cloud Security Alliance
Hardware Security Module(HSM) as a Service
Hardware Security Module(HSM) as a Service
IGNITE Technologies
CREDENTIAL DUMPING FAKE SERVICES
CREDENTIAL DUMPING FAKE SERVICES
IGNITE Technologies
A Detailed Guide on Covenant
A Detailed Guide on Covenant
NIST
Computer Security Incident Handling Guide
Computer Security Incident Handling Guide
IGNITE Technologies
DIGITAL FORENSIC FTK IMAGER
DIGITAL FORENSIC FTK IMAGER
Accedere
Cloud Security Assessment
Cloud Security Assessment
YL VENTURES
CISO Reporting Landscape 2024
CISO Reporting Landscape 2024
CISO Edition
Reporting Cyber Risk to Boards
Reporting Cyber Risk to Boards
CIOB
CIOB Artificial Intelligence (AI) Playbook 2024
CIOB Artificial Intelligence (AI) Playbook 2024
INCIBE & SPAIN GOVERNMENT
Nuevas normativas de 2024 de ciberseguridad para vehículos
Nuevas normativas de 2024 de ciberseguridad para vehículos