Key Takeaways
- The Senate Armed Services Subcommittee on Cybersecurity will hold a classified briefing on May 13 to review cyber operations and readiness for Q4 FY2025 and Q1 FY2026.
- Insights from the briefing are expected to shape the FY 2026 National Defense Authorization Act (NDAA), influencing billions in defense spending on cyber forces, training, and emerging technologies.
- Major defense contractors and cybersecurity firms have intensified lobbying—spending hundreds of thousands of dollars—on issues such as post‑quantum cryptography, IoT security, AI‑enabled defenses, and synthetic cyber‑training infrastructure.
- The subcommittee’s bipartisan roster includes senior senators with deep defense and intelligence backgrounds, several of whom have received campaign contributions from the lobbying firms’ political action committees.
- Because the hearing is classified, no public testimony or transcript will be released; however, any subsequent legislative action will reveal the briefing’s impact on NDAA provisions.
Overview of the Classified Briefing
The Senate Armed Services Subcommittee on Cybersecurity has scheduled a closed‑door briefing for May 13, 2025, to examine cyber operations and readiness covering the fourth quarter of fiscal year 2025 (through September 2025) and the first quarter of fiscal year 2026 (through December 2025). This six‑month window precedes the current congressional session’s major legislative pushes, giving lawmakers a recent snapshot of U.S. cyber posture before they draft the FY 2026 National Defense Authorization Act. The briefing’s classified nature allows discussion of sensitive topics such as adversary capabilities, U.S. offensive cyber activities, and vulnerability assessments that cannot be disclosed in open hearings.
Implications for the FY 2026 NDAA
Lawmakers intend to use the briefing’s findings to inform the markup of the FY 2026 NDAA, which typically occurs in the spring. Decisions made after the briefing will directly affect provisions concerning cyber force structure, training requirements, and technology investment, thereby steering the flow of billions of dollars in defense spending. Because the subcommittee’s recommendations can become statutory language, the briefing serves as a pivotal juncture where executive assessments meet congressional authority over defense policy and budgeting.
Current Policy Priorities Stakeholders
Defense contractors and cybersecurity firms have spent the past year urging Congress to address several core issues that align with the subcommittee’s agenda: cyber force training and readiness, Department of Defense transition to post‑quantum cryptography, IoT security standards, and the integration of artificial intelligence into military cyber defenses. These topics reflect both emerging threats and opportunities for technological advantage, making them fertile ground for legislative action and subsequent contract awards.
Lobbying Spending Details
Quantum Research International Inc. reported $280,000 in lobbying expenditures across five consecutive quarters (Q1 2025–Q1 2026) focused on cyber security operations tied to the FY 2026 NDAA and defense appropriations. OpenPolicy Inc. allocated $113,000 over four quarters to press the DoD on post‑quantum readiness and IoT security requirements within the FY 2026 NDAA. Site 525 filed a first‑quarter 2026 disclosure seeking authorization and funding for military cyber training environments and synthetic training infrastructure, including specific NDAA provisions on cyber force training. Booz Allen Hamilton maintains a steady $90,000‑per‑quarter presence on cybersecurity issues, while Palo Alto Networks spends $120,000 each quarter on AI‑enabled defenses, federal cyber practices, and related trade policies. Virtualitics disclosed $100,000 in Q1 2026 lobbying aimed at AI for military readiness, targeting the FY 2027 NDAA.
Specific Legislative Targets
The lobbying disclosures reveal precise textual aims rather than vague advocacy. OpenPolicy’s filings explicitly reference IoT security mandates and post‑quantum cryptography requirements as desired NDAA provisions. Site 525’s language targets authorization language for synthetic cyber training infrastructure, seeking to embed such requirements directly into the bill. Booz Allen Hamilton’s efforts center on federal cyber workforce development and procurement policy, while Palo Alto Networks pushes for AI‑enabled cyber defense frameworks and standards. These focused asks indicate that firms are attempting to convert briefing insights into concrete legislative language that would lock in funding and policy direction for their technologies.
Subcommittee Composition
The briefing is chaired by Senator Mike Rounds (R‑S.D.), with Senator Jacky Rosen (D‑Nev.) serving as ranking member. The full roster includes Senators Roger Wicker (R‑Miss.), Tom Cotton (R‑Ark.), Joni Ernst (R‑Iowa), Eric Schmitt (R‑Mo.), Ted Budd (R‑N.C.), Jack Reed (D‑R.I.), Kirsten Gillibrand (D‑N.Y.), Gary Peters (D‑Mich.), and Elissa Slotkin (D‑Mich.). Collectively, these members bring extensive experience on defense, intelligence, and cybersecurity matters, with several having served on related committees or held leadership roles in past defense authorization debates.
Financial Ties and Influence
Campaign finance records show that Booz Allen Hamilton’s political action committee contributed $3,500 to Senator Rounds and $2,000 to Senator Wicker over the past two years, with a total distribution of $48,500 across 17 members of Congress—$35,500 going to Republican recipients. These contributions, while modest relative to the firms’ lobbying expenditures, illustrate a pattern of financial engagement with key subcommittee members, potentially facilitating access and influencing the legislative agenda during the briefing’s aftermath.
Readiness Assessment Focus
The briefing’s framing indicates a systematic review of operational posture rather than a reaction to a singular incident. By examining Q4 FY2025 and Q1 FY2026, senators will assess recent cyber activity, training efficacy, and technology deployment trends. This readiness evaluation aims to identify gaps in cyber force capabilities, inform needed investments in training infrastructure, and guide decisions on adopting emerging tools such as post‑quantum cryptography and AI‑enabled defense systems ahead of the NDAA markup.
Link to NDAA Markup Timeline
Because the Senate Armed Services Committee typically marks up its version of the defense authorization bill in the spring, insights from the May 13 briefing can be incorporated directly into the committee’s draft before it proceeds to the floor. The timing ensures that legislators have contemporaneous data on cyber operations and readiness, allowing them to adjust funding levels, authorize new programs, or impose specific requirements—such as those sought by lobbyists on IoT security or synthetic training—before finalizing the FY 2026 NDAA.
Nature of the Classified Hearing
As a classified session, the briefing will not produce a public witness list, testimony transcript, or post‑hearing summary. The closed format is standard for discussions involving adversary capabilities, U.S. offensive cyber operations, and detailed vulnerability assessments that could compromise national security if disclosed. Consequently, the only visible outcome will be any legislative action the subcommittee takes in the weeks following the briefing, which will indirectly reveal the briefing’s influence on NDAA provisions and defense spending priorities.