Senator Warner Warns of CISA Staffing Cuts and Funding Gaps Threatening State & Local Critical‑Infrastructure Support
What Happened — Senator Mark Warner sent a letter to CISA Acting Director Nick Andersen highlighting that roughly one‑third of CISA’s workforce has been cut, senior staff positions remain vacant, and the agency’s MS‑ISAC information‑sharing center is at risk of losing federal funding. The letter warns that these reductions jeopardize CISA’s ability to serve state, local, and tribal critical‑infrastructure operators.
Why It Matters for Compliance & Audit Readiness
- The situation exemplifies a third‑party service‑delivery failure that SOC 2 vendor‑management controls are designed to monitor and mitigate.
- Continuous evidence of a vendor’s staffing, funding, and service‑level health is essential to demonstrate due diligence during audits.
- A loss of CISA’s threat‑intel feed can create gaps in an organization’s risk‑assessment evidence, impacting the CC6.1 (Monitoring of Subservice Organizations) and CC7.1 (Risk Management) criteria.
Who Is Affected – Federal, state, and local government agencies; critical‑infrastructure operators in energy, transportation, healthcare, and municipal services; any organization that relies on MS‑ISAC alerts for threat‑intel.
Recommended Actions –
- Map CISA/MS‑ISAC reliance to your SOC 2 vendor‑risk controls and document the dependency.
- Implement continuous monitoring of CISA’s operational health (staffing levels, budget allocations) as audit evidence.
- Develop a contingency plan for alternative threat‑intel sources should CISA’s services degrade.
Source: The Record
Technical Notes – The cuts affect CISA’s regional directorates (five of ten are acting), and a $700 M budget reduction for FY 2027 has been proposed. The MS‑ISAC, a DHS‑funded information‑sharing and analysis center, faces funding loss after DHS Secretary Kristi Noem halted federal grant use by state‑local participants. Source: The Record