Government Agencies Face Rising Cyber Risk Amid Budget Cuts and Staffing Reductions
What Happened – A Forrester Consulting survey of 212 U.S. government cybersecurity leaders (commissioned by Carahsoft and Broadcom) reveals that budget instability and head‑count reductions are eroding security operations. Agencies report reduced confidence in their posture and anticipate a surge in compromises over the next year.
Why It Matters for TPRM –
- Diminished government security controls increase third‑party exposure for vendors and contractors.
- Consolidation of tools and reliance on AI may shift risk to shared services and cloud providers.
- Heightened breach likelihood amplifies supply‑chain threat vectors for any organization doing business with the public sector.
Who Is Affected – Federal, state, and local government entities; contractors and SaaS providers serving the public sector.
Recommended Actions –
- Review contracts for clauses addressing agency budget volatility and staffing levels.
- Validate that vendors have AI‑driven security automation and tool‑consolidation roadmaps.
- Ensure continuous monitoring of government‑related supply‑chain risk indicators.
Technical Notes – The survey highlights three primary weak spots: network security, data protection, and incident response. Respondents also flag gaps in endpoint visibility, analytics, and compliance reporting. No specific CVEs or malware are cited; the risk stems from resource constraints and reduced operational capacity. Source: Broadcom Symantec Blog – Doing More with Less: How Government Agencies are Rethinking Cybersecurity