State and Local Cybersecurity Grant Program (SLCGP)

 
  • Grants Office Grantwriting service fee is currently unavailable for this grant
    Get more information on grantwriting

    CFDA#

    97.137     		 

    Funder Type

    Federal Government

    IT Classification

    A - Primarily intended to fund technology

    Authority

    Federal Emergency Management Agency (FEMA)

    Summary

    Our nation faces unprecedented cybersecurity risks, including increasingly sophisticated adversaries, widespread vulnerabilities in commonly used hardware and software, and broad dependencies on networked technologies for the day-to-day operation of critical infrastructure. Cyber risk management is further complicated by the ability of malicious actors to operate remotely, linkages between cyber and physical systems, and the difficulty of reducing vulnerabilities in critical infrastructure.


    Considering the risk and potential consequences of cyber incidents, strengthening the cybersecurity practices and resilience of state, local, and territorial (SLT) governments is an important homeland security mission and the primary focus of the State and Local Cybersecurity Grant Program (SLCGP). Through funding from the Infrastructure Investment and Jobs Act, the SLCGP enables DHS to make targeted cybersecurity investments in SLT government agencies to strengthen the security of critical infrastructure and improve the resilience of services SLT governments provide their communities.


    Goal: The goal of the SLCGP is to assist SLT governments with managing andreducing systemic cyber risk. This goal can be achieved over the course of the four years of SLCGP funding as applicants focus their Cybersecurity Plans, priorities, projects, and implementation toward addressing SLCGP objectives.


    Objectives: Applicants are required to submit applications that address at least one of the following program objectives in their applications:

    • Objective 1: Develop and establish appropriate governance structures, including by developing, implementing, or revising Cybersecurity Plans, to improve capabilities to respond to cybersecurity incidents and ensure continuity of operations.
    • Objective 2: Understand their current cybersecurity posture and areas for improvement based on continuous testing, evaluation, and structured assessments.
    • Objective 3: Implement security protections commensurate with risk.
    • Objective 4: Ensure organization personnel are appropriately trained in cybersecurity, commensurate with responsibility.


    FY24 State and Local Cybersecurity Grant Program:


    The FY 2024 SLCGP aligns with the National Cybersecurity Strategy by addressing three of the five pillars:

    • Pillar One – Defend Critical Infrastructure;
    • Pillar Two – Disrupt and Dismantle Threat Actors; and
    • Pillar Four – Invest in a Resilient Future.

    The FY 2024 SLCGP also addresses the 2020–2024 DHS Strategic Plan ( https://www.dhs.gov/publication/department-homeland-securitys-strategic-plan-fiscal-years-2020-2024 ) by helping DHS achieve Goal 3: Secure Cyberspace and Critical Infrastructure. This includes Objective 3.2: Strengthen the Security and Resilience of Critical Infrastructure.


    Additionally, the FY 2024 SLCGP supports the 2022–2026 FEMA Strategic Plan ( https://www.fema.gov/about/strategic-plan ), which outlines a bold vision with three ambitious goals, including Goal 3: Promote FY 2024 SLCGP NOFO and Sustain a Ready FEMA and Prepared Nation, under which falls Objective 3.2: Posture FEMA to Meet Current and Emergent Threats.


    The FY 2024 SLCGP also aligns with the 2023–2025 CISA Strategic Plan ( https://www.cisa.gov/resources-tools/resources/2023-2025-strategic-plan ) , which encompasses Goal 1: Cyber Defense, Goal 2: Risk Reduction and Resilience, and Goal 3: Operational Collaboration.


    *All applicants with a Cybersecurity and Infrastructure Security Agency (CISA) approved Cybersecurity Plan must submit their current Cybersecurity Plan to CISA via the FEMA SLCGP Inbox at [email protected] no later than January 30, 2025, and annually thereafter on the same date throughout the grant's period of performance. When submitting a Cybersecurity Plan, applicants must inform CISA if they revised their plan since CISA's last approval of it.


    Cybersecurity Best Practices for Individual Projects:

    • Implement multi-factor authentication
    • Implement enhanced logging
    • Data encryption for data at rest and in transit
    • End use of unsupported/end of life software and hardware that are accessible from the internet
    • Prohibit use of known/fixed/default passwords and credentials
    • Ensure the ability to reconstitute systems (backups)
    • Actively engage in bidirectional sharing between CISA and SLT entities in cyber relevant time frames to drive down cyber risk
    • Migration to the .gov internet domain
     

    History of Funding

    A total of $374,981,324 was available for FY23 to 56 states and territories.

    A total of $185,024,069 was available for FY22 to 56 states and territories .

    Additional Information

    Any entity that receives funds from a grant under this program may not use the grant:

    • Spyware;
    • Construction;
    • Renovation;
    • To pay a ransom;
    • For recreational or social purposes;
    • To pay for cybersecurity insurance premiums;
    • To acquire land or to construct, remodel, or perform alterations of buildings or other physical facilities;
    • For any purpose that does not address cybersecurity risks or cybersecurity threats on information systems owned or operated by, or on behalf of, the eligible entity that receives the grant or a local government within the jurisdiction of the eligible entity;
    • To supplant state or local funds; however, this shall not be construed to prohibit the use of funds from a grant under this NOFO for otherwise permissible uses on the basis that the SLT has previously used SLT funds to support the same or similar uses; and
    • For any recipient or subrecipient cost-sharing contribution.

    Contacts

    Program Office Staff

    Program Office Staff
    800 K Street NW
    Washington, DC 204752-3620

    CISA SLCGP Staff

    CISA SLCGP Staff

    ,
    888-282-0870

    CISA Central

    CISA Central
    245 Murray Lane Southwest
    Washington, DC 20032
    888-282-0870

    Lisa Nine

    Lisa Nine

    ,
    202-706-3176
     

  • Eligibility Details

    All 56 states and territories, including any state of the United States, the District of Columbia, the Commonwealth of Puerto Rico, the U.S. Virgin Islands, Guam, American Samoa, and the Commonwealth of the Northern Mariana Islands, are eligible to apply for SLCGP funds. States are required to pass down 80% of total funding to local and tribal governments which will then apply directly to their State Administrative Agency for funding.


    Deadline Details

    State/territory applications for FY24 funds are to be submitted by December 3, 2024 by 5:00 p.m., EST. Once approved, FEMA will remove any holds that they placed on funding and eligible entities can execute projects and make sub-awards. Local deadlines will vary by state.

    Award Details

    A total of $279,873,562 is available for FY24 to 56 states and territories. Eligible entities must meet a 30% cost share requirement for the FY24 SLCGP. The project period of performance is 48 months beginning on February 1, 2024. Future funding amounts are to be determined.


    FY24 funding amounts for individual states can be found here: https://www.fema.gov/grants/preparedness/state-local-cybersecurity-grant-program#totals


    A total of $1 billion has been allocated for this program from FY2022 through FY2025. This program is appropriated $185 million for FY22, $375 million for FY23, $280 million for FY24 and $100 million for FY25. U.S. states and territories will be the only entities that can apply for grant awards under the SLCGP. Local entities receive sub-awards through states. The SLCGP SAA recipient must pass through at least 80% of the federal funds provided under the grant. With the consent of the recipients, this pass-through may be in the form of in-kind services, capabilities, or activities, or a combination of funding and other services. At least 25% of the total federal award must also go to rural areas. This pass-through to rural areas is a part of the overall 80% pass-through; however, it should be emphasized that 25% of the total federal amount must be passed through to rural areas. All pass-through entities must meet all program and grant administration requirements.

    Related Webcasts Use the links below to view the recorded playback of these webcasts


    • Funding to Enhance Response, Investigation, and Prosecution of Domestic Violence - Sponsored by Panasonic - Playback Available
    • Justice Assistance Grants: Re-thinking the Program You Know So Well - Sponsored by Panasonic - Playback Available
    • Making the Most of the 2014 Assistance to Firefighters Grants – Sponsored by Panasonic - Playback Available

 

You have not selected any grants to Add


Please select at least one grant to continue.


Selections Added


The selected grant has been added to your .



  Okay  

Research Reports


One of the benefits of purchasing an UPstream® subscription is
generating professional research reports in Microsoft® Word or Adobe® PDF format
Generating research reports allows you to capture all the grant data as
well as a nice set of instructions on how to read these reports


Watchlists and Grant Progress


With an UPstream® subscription you can add grants to your
own personal Watchlist. By adding grants to your watchlist, you will
receive emails about updates to your grants, be able to track your
grant's progress from watching to awards, and can easily manage any
step in the process through simplified workflows.

Email this Grant


With an UPstream® subscription, you can email grant details, a research report,
and relevant links to yourself or others so that you never lose your
details again. Emailing grants is a great way to keep a copy of the
current details so that when you are ready to start seeking funding
you already know where to go