CISA Under Fire: Staff Cuts & Leadership Concerns Threaten US Cybersecurity

The Cybersecurity and Infrastructure Security Agency (CISA), the U.S. Federal agency responsible for defending civilian government networks and critical infrastructure, is facing a severe crisis, according to multiple sources within Congress, the cybersecurity industry, and the agency itself. A confluence of factors – budget cuts, staff reductions, political headwinds, and a prolonged government shutdown – have left CISA significantly weakened and, according to some observers, unprepared for a major cyberattack.

The agency has lost roughly one-third of its personnel since the beginning of the current administration, impacting core functions like counter-ransomware initiatives and the promotion of secure software development practices. This decline in staffing has been particularly acute within the election security team, a critical component of CISA’s mission, as previously reported by TechCrunch in February 2025.

The situation is further complicated by the administration’s ongoing focus on immigration enforcement. Hundreds of CISA staffers have been reassigned to support other agencies within the Department of Homeland Security involved in border security operations, diverting resources away from cybersecurity efforts. This internal reshuffling, detailed in a report from October 2025, underscores a perceived deprioritization of cybersecurity within the broader departmental strategy.

Several sources point to the administration’s continued questioning of the 2020 election results as a contributing factor to CISA’s diminished standing. The agency’s efforts to secure election infrastructure have been met with skepticism and, in some cases, outright opposition, leading to a loss of political support and further resource constraints.

The lack of a permanent director since 2025 has also created a leadership vacuum. Madhu Gottumukkala, the current acting director, has reportedly struggled to effectively lead the agency, with some sources describing his performance as problematic and even contributing to security vulnerabilities. A recent incident involving Gottumukkala uploading sensitive government documents to ChatGPT, as reported in late January 2026, has further fueled concerns about the agency’s leadership and operational security.

The current partial U.S. Federal government shutdown, which began on February 14, 2026, has exacerbated the crisis. CISA is currently operating at approximately 38% staff levels, severely limiting its ability to respond to emerging threats and maintain critical infrastructure protection. This staffing level is particularly alarming given the increasing sophistication and frequency of cyberattacks targeting both public and private sector organizations.

The cuts and reassignments at CISA have prompted criticism from both sides of the political aisle. Congressman Eric Swalwell, a Democrat on the House Homeland Security Committee’s cyber subcommittee, has demanded that CISA cease all workforce reductions and reinstate transferred or dismissed employees. His letter, sent in October 2025, highlights the growing concern among lawmakers about the agency’s ability to effectively combat mounting cyber threats.

The situation is not solely attributable to the administration or Congress. Some observers blame both for the agency’s current predicament. The failure to confirm a permanent director, coupled with ongoing funding disputes and political infighting, has created a climate of uncertainty and instability that has hampered CISA’s ability to fulfill its mission.

Despite the challenges, CISA’s acting director, Madhu Gottumukkala, maintains that the agency “remains unwavering in its commitment to protect our federal networks from malicious cyber threat actors despite the multi-week government shutdown.” However, this statement is viewed with skepticism by many within the cybersecurity community, who fear that the agency’s diminished capacity will leave the nation vulnerable to increasingly sophisticated cyberattacks.

The consequences of a weakened CISA extend beyond government networks. The agency plays a crucial role in coordinating cybersecurity efforts across the public and private sectors, providing threat intelligence, and assisting organizations in responding to cyber incidents. A diminished CISA weakens the nation’s overall cybersecurity posture, increasing the risk of disruptions to critical infrastructure, data breaches, and economic losses.

As CISA navigates these challenges, the need for bipartisan support and sustained investment in cybersecurity is more critical than ever. The agency’s ability to effectively defend the nation against cyber threats depends on its ability to attract and retain qualified personnel, maintain adequate funding, and operate with clear and consistent leadership.