Key Takeaways:
- The Cybersecurity and Infrastructure Security Agency (CISA) has lost over one-third of its workforce since President Donald Trump took office.
- CISA’s acting leader, Madhu Gottumukkala, defended the Trump administration’s mass layoffs, stating that the agency is still prepared to defend government and critical infrastructure networks from hackers.
- Lawmakers expressed concern about the turmoil at CISA, with Democrats criticizing the cuts and Republicans praising the agency’s efficiency.
- CISA is not planning to make any more organizational changes and will consult with Congress if that changes.
- The agency is committed to helping states secure the upcoming midterm elections and is working to refine the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) regulation.
Introduction to CISA’s Workforce Cuts
The Cybersecurity and Infrastructure Security Agency’s (CISA) acting leader, Madhu Gottumukkala, recently defended the Trump administration’s mass layoffs at CISA during a House Homeland Security Committee hearing. Gottumukkala stated that a "disciplined mission requires the right workforce — not a larger one, but a more capable and skilled one." He added that CISA will continue targeted hiring in mission-critical roles while remaining aligned with the Department of Homeland Security’s (DHS) broader efforts to control costs and maximize return. Despite the layoffs, Gottumukkala assured lawmakers that CISA has the staff it needs to defend government and critical infrastructure networks from hackers.
CISA Turmoil and Layoffs
CISA has lost more than one-third of its workforce since President Donald Trump took office, with at least 998 employees quitting, being laid off, or transferred since the start of the Trump administration. Lawmakers of both parties expressed concern about the turmoil at CISA, with committee chairman Andrew Gabarino stating that "workforce continuity, clear leadership, and mission readiness are essential to effective cyber defenses." Democrats were more critical, with Rep. James Walkinshaw stating that the cuts at CISA "have weakened our defenses and left our critical systems and infrastructure more exposed and the American people more vulnerable." Gottumukkala repeatedly declined to answer questions about how CISA’s workforce purge was affecting its ability to execute its mission.
Election Security Concerns
Gottumukkala was also questioned about CISA’s election security mission, which has seen significant changes since the Trump administration took office. In 2020, CISA helped state and local officials alert social media companies to misinformation related to the election and the Covid-19 pandemic. However, Republicans accused CISA of conspiring with Silicon Valley to censor Americans’ online speech, and the agency froze its election security program and eliminated the entire team. Gottumukkala assured lawmakers that CISA is still committed to helping states secure the upcoming midterm elections and that the agency treats election security like any other critical infrastructure sector. He also stated that CISA’s election security services remain fully in place and that the agency is working with the military’s U.S. Cyber Command to neutralize foreign adversaries’ attempts to interfere with American elections.
CIRCIA Update and Agency Priorities
Gottumukkala also discussed the status of the regulation that CISA is developing pursuant to the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA). The business community objected to the Biden administration’s draft rule, saying it was too broad and onerous, and the Trump administration has said that it is working closely with industry to refine the requirements. Gottumukkala stated that CISA is reviewing over 280 detailed public comments and is working to finalize the regulation. He also emphasized that the Trump administration is keeping CISA "squarely focused" on the responsibilities that Congress gave it, and that the agency is prioritizing what works, eliminating duplication, and ensuring that every product and service directly advances CISA’s regulatory mission and aligns with the administration’s goals of efficiency, accountability, and impact.
Conclusion and Future Outlook
The hearing highlighted the importance of CISA to U.S. national security, with lawmakers from both parties recognizing the agency’s critical role in defending the country against cyber threats. However, the hearing also underscored the concerns about the turmoil at CISA and the impact of the Trump administration’s mass layoffs on the agency’s ability to execute its mission. As CISA moves forward, it will be important for the agency to balance its priorities and ensure that it has the necessary resources and personnel to defend the country against increasingly sophisticated cyber threats. The agency’s commitment to election security and its work on the CIRCIA regulation will be critical in the coming months, and lawmakers will likely continue to monitor CISA’s progress closely.
