Trump Budget Plan Targets Deep Cut to CISA, the US Cybersecurity Agency

A major proposed reduction for the federal cyber agency

The Trump administration is proposing to cut at least $707 million from the budget of the Cybersecurity and Infrastructure Security Agency in 2027, a move that would significantly reduce the resources of the federal government’s central civilian cybersecurity body.

The proposal appeared in a broader budget package released late last week. According to the document described in the source report, the administration says the reduction would return CISA to what it considers the agency’s “core mission”: securing federal civilian networks and helping protect critical infrastructure from cyberattacks. The proposal frames the cut as part of an effort to eliminate what it calls “weaponization and waste.”

In practice, that would push CISA’s operating budget down to about $2 billion. That is not a routine adjustment. It would follow a period in which the agency has already experienced staff losses, layoffs, and internal strain, while continuing to sit at the center of national efforts to respond to escalating cyber threats.

The political argument behind the cut

The administration’s justification leans heavily on accusations that CISA strayed into censorship, especially through work tied to misinformation and election security after the 2020 presidential election. Those claims have been repeated by President Donald Trump and his allies for years. The source material notes that those claims have also been repeatedly challenged and debunked.

The budget proposal argues that programs outside direct cyber defense should be removed, including efforts it labels duplicative, such as school safety initiatives that exist elsewhere at the state and federal level. But the broader dispute is not mainly about program overlap. It is about what CISA is for, how much independence it should have, and whether election-related information integrity work belongs inside a security agency at all.

That argument matters because CISA was created to operate across institutional boundaries. The agency does not just defend federal networks in the narrow technical sense. It also supports critical infrastructure operators, shares threat intelligence, coordinates incident response, and helps states and localities strengthen resilience. Once its mandate is reduced on paper, some of that connective capacity can be harder to rebuild than line-item budgeting suggests.

An agency under pressure before any new cuts land

The proposed reduction comes after an earlier attempt to slash the agency’s budget. Last year, the administration sought nearly $500 million in cuts, or roughly 17% of CISA’s federal budget. Congress ultimately pushed back and reduced that cut to around $135 million after negotiations.

Even so, the cumulative effects have been substantial. The source report says CISA has already lost hundreds of employees through a combination of budget cuts, staffing reductions, and layoffs. It also notes that the agency has lacked a Senate-confirmed permanent director since Trump returned to office in 2025.

That leadership gap is more than symbolic. Cybersecurity agencies rely on credibility, coordination, and clear authority, especially when managing incidents that cross public and private networks. A diminished workforce paired with prolonged leadership uncertainty can slow decision-making and reduce confidence among the state agencies, infrastructure operators, and companies that depend on federal guidance.

Why the timing is consequential

The argument for downsizing arrives at a moment when the United States continues to face large-scale digital risk. The source report points to several major hacks in recent years. That recent history is part of why lawmakers and security experts have warned that CISA is already stretched too thin.

The core tension is straightforward. The administration says the cut will sharpen the agency by narrowing its scope. Critics argue the same move could weaken the country’s ability to anticipate, coordinate, and recover from cyber incidents that rarely stay within neat bureaucratic categories.

Critical infrastructure protection is an especially revealing example. The budget language says CISA should focus on protecting critical infrastructure, yet the agency’s ability to do that depends on staffing, outreach, information-sharing, and technical support. A smaller agency may be more ideologically streamlined, but it is not automatically more capable.

There is also a public-sector labor dimension. Cybersecurity talent is difficult to recruit and retain even under stable conditions. Repeated waves of cuts and uncertainty can make the government a less attractive place for specialists whose skills are in high demand elsewhere.

What happens next

The proposal is not final. Congress still has to decide whether to accept, reject, or modify it. Last year’s fight showed that lawmakers are willing to intervene when they believe the cuts go too far, and CISA’s role in defending civilian networks gives it bipartisan relevance even amid broader political conflict.

Still, the new number is large enough to signal a clear governing intent. This is not a modest trim disguised as reform. It is an attempt to redefine the agency by shrinking it. If enacted, the cut would test whether CISA can keep functioning as the nation’s lead civilian cyber coordinator while operating with fewer people, less money, and a narrower mandate.

The debate therefore goes beyond one agency’s budget. It is a referendum on how the federal government understands cybersecurity itself: as a broad systems problem that requires sustained coordination, or as a smaller technical mission that should be stripped of anything politically contested. Congress will decide the immediate funding outcome, but the strategic argument is already fully underway.

This article is based on reporting by TechCrunch. Read the original article.