Threat-Intelligence Sharing Efforts Under Threat
The US government’s Cybersecurity and Infrastructure Security Agency, aka CISA, is on the chopping block. With rumors swirling that nearly 40 percent of its workforce may be cut, lawmakers and cyber experts are sounding the alarm. These latest cuts will exacerbate digital threats to US networks, which are already under daily fire from nation-state spies and cybercrime gangs.
Elimination of Threat-Intelligence Sharing Efforts
One of the ways this weakening of critical organizations’ defenses will play out is in the elimination of threat-intelligence sharing efforts between the government and private sector. This is a critical function of CISA, and its elimination will harm national security. “Firing cyber personnel at CISA harms national security on a daily basis — this goes well beyond disruption and is actually causing destabilization,” said retired US Navy Rear Admiral Mark Montgomery. “Secretary Noem has conducted a series of actions that are gutting CISA — the nation’s civilian cyber defense agency — and weakening public-private collaboration efforts.”
Homeland Security’s Role
Homeland Security oversees CISA, and during her confirmation hearing to lead the department, Noem indicated she wanted to make cuts to America’s top cybersecurity agency. She also stated that CISA had no business countering online disinformation, especially as it related to US elections.
Termination of Advisory Committees
Even before Noem was sworn into office, the Trump administration terminated all memberships on advisory committees within Homeland Security, including those focused on cyber threats and information sharing. These committees provide unique perspectives on threats to US cybersecurity and technology development. “These boards provide insights and advice from private industry,” Montgomery said. “They serve as vehicles for the government to gain insights and advice from private industry.”
Cuts to MS-ISAC Funding
CISA cut $10 million in funding, nearly half the total budget, for the Multi-State Information Sharing and Analysis Center (MS-ISAC). This organization provides free and low-cost threat detection and response services to state and local governments. “The cuts weaken US cyber defenses by downsizing threat-hunting teams and fragmenting personnel who respond to critical infrastructure threats,” said Lance Hunter, professor of international relations at Augusta University. “Public-private partnerships play an important role in cybersecurity. Thus, cuts to entities such as the MS-ISAC make it more difficult to develop a well-rounded cybersecurity strategy.”
The Joint Cyber Defense Collaborative (JCDC) is a public-private collaboration that aims to share cyber-threat data and security skills. CISA’s efforts to champion JCDC have been instrumental in promoting public-private collaboration. “But it is essentially the only clearinghouse for threat intelligence across government and the private sector, and any diminishment of that capability will harm us,” said Blaze. “JCDC is critical to the US’s ability to combat threats in cyberspace.”
The upcoming CISA personnel cuts follow last week’s firing of General Timothy Haugh as commander of US Cyber Command and director of the National Security Agency. These moves bode ill for network defenders tasked with fending off Russian and Chinese attackers.
California Rep Eric Swalwell, the ranking Democrat on the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection, called the cuts “schizophrenic” and indicated he plans to push legislation this year to codify JCDC into law.
| Organization | Goal |
|---|---|
| CISA | To share threat intelligence and security skills with state and local governments |
| Private Sector | To provide expertise and resources to support cybersecurity efforts |
The slashing of CISA staff and scrapping of programs is having a devastating impact on US national security. The elimination of threat-intelligence sharing efforts between the government and private sector is particularly concerning. Any diminishment of this capability will harm national security and exacerbate digital threats to US networks. The cuts to CISA’s workforce and programs demonstrate a lack of understanding and coordination between the government and private sector. The result is a weakening of critical organizations’ defenses, which will make it more difficult for the US to combat threats in cyberspace. As the US continues to face threats from nation-state spies and cybercrime gangs, it is essential that the government and private sector work together to strengthen national security. The elimination of threat-intelligence sharing efforts and the scrapping of programs at CISA are steps in the wrong direction. The US needs to prioritize public-private collaboration to effectively combat threats in cyberspace. This requires a coordinated effort between the government and private sector to share threat intelligence, security skills, and resources. By prioritizing public-private collaboration, the US can strengthen its national security and protect its critical infrastructure from cyber threats. The elimination of threat-intelligence sharing efforts and the scrapping of programs at CISA are not steps in the right direction. Instead, they demonstrate a lack of understanding and coordination between the government and private sector.
