{"id":7771,"date":"2026-04-10T09:01:00","date_gmt":"2026-04-10T09:01:00","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=7771"},"modified":"2026-04-10T09:01:00","modified_gmt":"2026-04-10T09:01:00","slug":"the-cyber-winners-and-losers-in-trumps-2027-budget","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=7771","title":{"rendered":"The cyber winners and losers in Trump\u2019s 2027 budget"},"content":{"rendered":"
\n
\n
\n
\n
<\/div>\n

Federal cybersecurity spending will decline in 2027 under Donald Trump\u2019s proposed budget, with uneven shifts across agencies, as some see sizable increases while others face sharp reductions.<\/p>\n

According to the Office of Management and Budget (OMB) crosscut tables<\/a> released with Trump\u2019s budget, civilian federal cybersecurity spending is expected to fall from $12.455 billion in 2026 to $12.228 billion in 2027, a drop of roughly $227 million. The decrease comes despite targeted increases for some agencies, reflecting uneven changes across the federal cyber landscape rather than a uniform pullback.<\/p>\n

The proposed decline follows last year\u2019s budget cycle in which earlier proposed cuts were partially reversed by Congress. Trump\u2019s 2026 budget request<\/a> last year called for nearly $1 billion in cybersecurity cuts, including steep reductions at the Cybersecurity and Infrastructure Security Agency (CISA).<\/p>\n

Congressional appropriators ultimately softened many of those reductions, restoring funding in key areas and preventing a deeper contraction by, for example, restoring $361 million in CISA\u2019s 2026 budget out of the $495 million spending cut that the administration had requested for that agency alone.<\/p>\n

Winners: DOJ and State see the largest increases<\/h2>\n

The biggest beneficiary in the 2027 budget is the Department of Justice, which would see its cyber funding rise by $312 million, or 33%, to $1.27 billion. The increase stands out as the largest single gain across civilian agencies.<\/p>\n

The State Department is another major gainer, with a $174 million, or 27% increase to $809 million. The increase aligns with an expanded focus on cyber and emerging technologies, including the department\u2019s new Bureau of Emerging Threats<\/a>, which is aimed at addressing cyberattacks and risks tied to technologies such as artificial intelligence.<\/p>\n

Other agencies seeing increases include:<\/p>\n

Department of Transportation: +$60 million (+11%)<\/p>\n

Department of Commerce: +$38 million (+10%)<\/p>\n

Department of Housing and Urban Development: +$17 million (+10%)<\/p>\n

Department of Energy: +$11 million (+12%)<\/p>\n

\n

Figure 1- Top gainers in Trump\u2019s 2027 budget. Compilation from OMB cross-cut tables.<\/p>\n

CSO<\/p>\n<\/div>\n

Several smaller agencies, including the EPA, Department of Education, Tennessee Valley Authority, Federal Mine Safety and Health Review Commission, and the US Army Corps of Engineers, also stand to post modest gains under the 2027 budget.<\/p>\n

Losers: DHS, VA, and research programs face cuts<\/h2>\n

The largest 2027 budget cut falls on the Department of Homeland Security, where cyber spending would decline by $222 million or 7% to $3.05 billion. DHS remains the government\u2019s largest civilian cyber spender, but the decrease is driven largely by cuts to CISA.<\/p>\n

Other notable reductions include:<\/p>\n

Department of Veterans Affairs: -$165 million (-13%)<\/p>\n

National Science Foundation: -$132 million (-50%)<\/p>\n

Department of Health and Human Services: -$94 million (-10%)<\/p>\n

Department of the Treasury: -$80 million (-10%)<\/p>\n

Several independent regulatory agencies, including the Securities and Exchange Commission and Federal Communications Commission, would also inexplicably see their cyber spending reduced to zero in the 2027 proposal. Both the SEC and FCC have been flashpoints for the Trump administration.<\/p>\n

The SEC under the previous administration pursued aggressive cybersecurity disclosure rules for public companies, which were unpopular with some corporate stakeholders. The elimination of cyber funding at both agencies raises questions about how those responsibilities would be carried out under the proposal.<\/p>\n

The reduction at the National Science Foundation (NSF) is particularly sharp, cutting roughly half of its cyber funding and reflecting a broader effort<\/a> to reduce the agency\u2019s overall budget. NSF plays a central role in funding academic cybersecurity research, supporting the development of the future cyber workforce, and advancing foundational security technologies, meaning the cuts could have long-term implications that extend well beyond immediate federal operations.<\/p>\n

Although not reflected in the crosscut tables, even the White House\u2019s Office of the National Cyber Director (ONCD) is slated to face spending cuts under the 2027 budget.Under the full 1,300-page administration budget, the ONCD is expected to see its budget trimmed by around $3 million, or 18%, to $17 million.<\/p>\n

\n

Figure 2- Biggest losers under Trump\u2019s 2027 budget, compilation from OMB crosscut tables.<\/p>\n

CSO<\/p>\n<\/div>\n

CISA: Deeper cuts, ongoing instability<\/h2>\n

The proposed reductions at CISA extend beyond the topline numbers reflected in the OMB tables.<\/p>\n

The budget calls for a $707 million reduction<\/a> to CISA, described as an effort to refocus the agency on core missions such as Federal network defense and critical infrastructure security while eliminating programs and offices the administration characterizes as duplicative or outside its primary scope, including certain external engagement and misinformation-related activities. The rationale echoes longstanding political criticism of CISA\u2019s past work on misinformation, although the agency has already wound down those efforts.<\/p>\n

The 2027 budget is expected to significantly reduce the agency\u2019s workforce, adding to concerns about operational capacity, by eliminating<\/a> 120 of the agency\u2019s stakeholder engagement program\u2019s 145 positions and cutting the program\u2019s funding by more than $50 million.<\/p>\n

The Stakeholder Engagement Division (SED) at CISA leads national and international voluntary partnerships and engagements for information sharing and collaboration.<\/p>\n

The FY 2027 budget request said the cuts would eliminate SED\u2019s council management offices, stakeholder engagement activities and offices, and the international affairs external engagement offices. CISA also said it would eliminate 867 agency positions, representing about 766 full-time equivalent employees, from its current staffing level of 3,732 positions.<\/p>\n

Reduced cyber spending even as threats grow<\/h2>\n

The 2027 proposal reduces total federal cyber spending even as threats from nation-state actors and criminal groups continue to advance in their sophistication and level of threat.<\/p>\n

\u201cBy decreasing spending on cybersecurity at a time when the threats in cybersecurity are accelerating, from both nation-state adversaries and criminal organizations, you\u2019re choosing to increase the nation\u2019s risk,\u201d Michael Daniel, president of the Cybersecurity Threat Alliance, told CSO.<\/p>\n

Daniel added that the effects of underinvestment can build over time. \u201cIf you underinvest in cybersecurity, it\u2019s one of those issues that tends to compound over the long term. Playing catch-up is always harder than making the investments upfront.\u201d<\/p>\n

Lawmakers are also signaling scrutiny of the proposed cuts. House Homeland Security Committee Chairman Andrew Garbarino (R-NY) said in a statement sent to CSO that \u201cCISA has a vital role in fulfilling DHS\u2019s core mission, one that I continue to strongly support,\u201d adding that Congress \u201chas a responsibility to ensure the agency has the resources it needs to succeed.\u201d<\/p>\n

The key takeaway for enterprises is that the reduced spending, particularly at CISA, means fewer federal resources available to assist in developing defenses and fending off threats. The upshot is that the implicit expectation that the federal government would serve as an ever-meaningful partner in private sector cyber defense is now structurally weakening.<\/p>\n

Enterprise budgets and strategies that assumed a strong private-public sector partnership on cybersecurity likely need revisiting. At a minimum, organizations should consider auditing their CISA dependencies, accelerating private threat intel relationships, and revisiting compliance assumptions around SEC enforcement.<\/p>\n

CTA\u2019s Daniel echoes those thoughts in warning that the reduced resources at CISA and elsewhere mean \u201cthe federal government\u2019s ability to support and interact with the private sector is going to be reduced. Even if you want to do regulatory reform and you want to reduce the regulatory burden on private sector companies, you still need people there to do the analysis to figure out how to make those changes.\u201d<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"

Federal cybersecurity spending will decline in 2027 under Donald Trump\u2019s proposed budget, with uneven shifts across agencies, as some see sizable increases while others face sharp reductions. According to the Office of Management and Budget (OMB) crosscut tables released with Trump\u2019s budget, civilian federal cybersecurity spending is expected to fall from $12.455 billion in 2026 […]<\/p>\n","protected":false},"author":0,"featured_media":7772,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-7771","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/7771"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7771"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/7771\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/7772"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7771"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7771"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7771"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}