Key Takeaways
- The Texas Cyber Command, launched Sept 1 2025, serves as the state’s centralized hub for cyber threat intelligence, incident response, forensics, and training.
- It is administered through the University of Texas System and headquartered at UT San Antonio, with a planned secure facility in the city.
- Retired Navy Vice Admiral Timothy James “TJ” White leads the agency, bringing experience from the U.S. National Cyber Mission Force and a private‑sector cybersecurity background.
- The agency’s annual budget is roughly $70 million, with staffing projected to rise from 65 to 130 full‑time employees by 2027.
- A Father’s Day‑weekend breach of a third‑party vendor used by Texas Parks and Wildlife exposed personal data of over 3 million hunting and fishing license holders, prompting free credit‑monitoring offers.
- Texas has faced notable cyber incidents in recent years, including a 2023 Dallas ransomware attack, a Dallas County data breach, and 2024 Russian‑linked attacks on rural water systems.
Overview of the Texas Cyber Command
The Texas Cyber Command was established by legislation passed in 2024 and became operational on September 1, 2025. Its mission is to consolidate the state’s fragmented cybersecurity functions into a single entity that can monitor threats, coordinate responses, and provide forensic support across all state agencies and local governments. By centralizing these duties, the Command aims to improve Texas’s ability to detect, mitigate, and recover from cyber incidents more swiftly than before.
Administrative Structure and Location
Although the agency is a state body, it is administered through the University of Texas System and is based at the University of Texas at San Antonio (UTSA). A purpose‑built, secure facility is planned for the UTSA campus to serve as the Command’s headquarters. This arrangement leverages academic expertise and research capabilities while providing a dedicated environment for handling sensitive cyber operations.
Legislative Origins and Strategic Planning
The creation of the Texas Cyber Command stemmed from a bill sponsored by Rep. Giovanni Capriglione (R‑Southlake) and Sen. Tan Parker (R‑Flower Mound). Governor Greg Abbott made the initiative a legislative priority and signed it into law in summer 2024. Prior to the agency’s launch, state officials released the State of Texas Cybersecurity Strategic Plan 2024‑2029, which called for stronger statewide coordination, enhanced defenses, faster threat detection, expanded training, and additional support for local governments—goals that now guide the Command’s activities.
Core Functions and Services
As the state’s central cybersecurity hub, the Texas Cyber Command receives reports of cyber incidents, operates a 24‑hour hotline and threat portal, and shares intelligence with state agencies, local governments, and private partners. Its core functions include cyber threat intelligence gathering, incident response coordination, digital forensics, and support for investigations and recovery efforts after attacks. The agency also provides training programs to raise cybersecurity awareness and technical proficiency across Texas.
Leadership Background
Retired Navy Vice Admiral Timothy James “TJ” White leads the Texas Cyber Command. Appointed by Governor Abbott in September 2025, White brings a distinguished military career, most recently as commander of the U.S. National Cyber Mission Force. Before his government service, he owned a cybersecurity firm in Austin, giving him practical insight into private‑sector challenges. His term is set to expire on February 1, 2027, unless renewed or extended.
Budget and Staffing Outlook
The agency’s operating budget is approximately $70 million per year for the next several fiscal years. Staffing is expected to expand from 65 full‑time employees in 2025 to 130 by 2027 to accommodate growing responsibilities. While the baseline budget is defined, state budget officials note that long‑term costs for contracted services, specialized facilities, and emerging technology needs remain uncertain and will be monitored as the Command matures.
The Father’s Day Weekend Breach
Over Father’s Day weekend in 2025, a cyber breach targeted a third‑party vendor that processes sales for Texas Parks and Wildlife hunting and fishing licenses. The incident exposed personal information—including driver’s license numbers, passport numbers, and contact details—for more than 3 million license holders. Officials confirmed that Social Security numbers and financial account data were not accessed. Affected Texans are eligible for one year of free credit monitoring through Kroll by calling 844‑959‑7123, with enrollment open until September 14, 2026.
Response and Support for Affected Individuals
Upon discovering the breach, the Texas Cyber Command activated its incident‑response protocols, worked with the vendor to secure the compromised systems, and coordinated notifications to the public. The agency emphasized that while the exposed data posed risks of identity theft, the absence of Social Security and financial information reduced the potential for severe fraud. The free credit‑monitoring offer aims to mitigate any downstream harm and provide peace of mind to those impacted.
Recent Cyber Threats Facing Texas
Texas has experienced several high‑profile cyber incidents in recent years that underscore the need for a coordinated state response. In 2023, a ransomware attack by the group Royal disrupted 911 services, courts, and other municipal operations in Dallas. Later that year, a breach attributed to the hacker collective Play exposed personal data of roughly 200,000 Dallas County residents. In 2024, cyberattacks linked to Russian hacktivists targeted rural water systems in communities such as Muleshoe and Hale Center, causing overflows and system failures that threatened public health and safety.
Implications for the Future of Texas Cybersecurity
The Texas Cyber Command’s early test—detecting and responding to the Parks and Wildlife vendor breach—demonstrates its emerging role as the state’s cyber watchdog. By centralizing threat intelligence, streamlining incident response, and offering training and forensic support, the Command aims to reduce the frequency and impact of cyberattacks across Texas. As the agency grows in size and capability, its effectiveness will be measured by how quickly it can identify threats, coordinate mitigation efforts, and help local governments and private sector partners recover from incidents, ultimately strengthening Texas’s resilience in an increasingly hostile cyber landscape.