Light Dark
April 8, 2024 By Jennifer Gregory 3 min read
News

The White House recently released its budget for the 2025 fiscal year, which supports the government’s commitment to cybersecurity. The cybersecurity funding allocations line up with the FY 2025 cybersecurity spending priorities released last year that included the following pillars:

  • Defend critical infrastructure
  • Disrupt and dismantle threat actors
  • Shape market forces to drive security and resilience
  • Invest in a resilient future
  • Forge international partnerships to pursue shared goals.

In 2023, the White House released a 35-page document detailing the new National Cybersecurity Strategy, with an updated strategy expected this summer. The measures in the strategy focused on encouraging secure development practices, which transfer the liability for software products and services to corporations. Many of the investments included in the new budget provide the funding needed for the new cybersecurity strategy and implementation of Executive Order 14110, “Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence.”

Four key areas of investment

The budget provides more than $13 billion in funding for civilian agencies to reduce cybersecurity risk through improving resiliency and defendability. Because of the 95% increase in large data breaches reported to the U.S. Health and Human Services (HHS), the budget includes an emphasis on healthcare.

Here are four key areas of investment outlined in the new budget:

1. Sustain FBI cyber and counterintelligence investigative capabilities

These funds help the FBI’s cyber intelligence, counterintelligence, cyber response and analysis capabilities. Additionally, the budget provides money for the Department of Justices to create a new section for cyber threats in the National Security Division and focus on using AI in a safe, secure and trustworthy manner per Order 14110.

2. Protect against foreign adversaries and safeguard the federal system

The bulk of these funds ensure that each federal agency increases the security of public services by funding civilian departments and agencies. Additionally, the budget funds the Cybersecurity and Infrastructure Security Agency (CISA), which includes Federal network tools, internal cybersecurity and analytical capabilities, critical infrastructure security coordination and critical infrastructure cyber event reporting.

3. Extend the frontiers of AI for science and technology and increase AI’s safety, security and resilience

By funding the Department of Energy’s computing capabilities, developing AI testbeds and evaluating AI outputs, the DOE can build AI models for energy security, national security and climate resilience. The budget provides training for new AI researchers from diverse backgrounds.

4. Protect the US healthcare system from cyber threats

As part of the goal of protecting the healthcare system, the budget makes it possible for the Administration for Strategic Preparedness and Response to coordinate the HHS’s cybersecurity efforts as well as funding for the HHS to focus on improving the cybersecurity of their systems and modernizing the Health Insurance Portability and Accountability Act of 1996. The proposed budget also directly helps healthcare systems, including funding essential cybersecurity efforts at high-need, low-resourced hospitals and an incentive for all hospitals to invest in advanced cybersecurity efforts.

Learn more about AI cybersecurity

The 2025 FY budget is an increase over the 2024 FY for civilian agencies

The proposed budget shows a commitment to cybersecurity by the current administration and a peek into Biden’s election priorities, with an upward trend in cybersecurity funding. However, experts do not expect the current budget to be passed as is. In FY 2024, Biden requested $12.7 billion, but the budget is still under negotiation. However, the funding for civilian agencies is a specific area of increase with $11.3 billion spent in FY 2023, $11.8 billion granted in FY 2024 and $13 billion proposed in FY 2025.

“This budget invests in our homeland security today and lays the groundwork to protect the American people well into the future. It supports efforts to advance the responsible use of Artificial Intelligence across DHS, as well as our work to protect against malicious cyber threats to federal networks and critical infrastructure,” DHS Secretary Alejandro Mayorkas said in a statement.

 |  |  |  | 
Jennifer Gregory
Cybersecurity Writer

More from News
December 16, 2024

FBI, CISA issue warning for cross Apple-Android texting

3 min read - CISA and the FBI recently released a joint statement that the People's Republic of China (PRC) is targeting commercial telecommunications infrastructure as part of a significant cyber espionage campaign. As a result, the agencies released a joint guide, Enhanced Visibility and Hardening Guidance for Communications Infrastructure, with best practices organizations and agencies should adopt to protect against this espionage threat. According to the statement, PRC-affiliated actors compromised networks at multiple telecommunication companies. They stole customer call records data as well…

December 9, 2024

Zero-day exploits underscore rising risks for internet-facing interfaces

3 min read - Recent reports confirm the active exploitation of a critical zero-day vulnerability targeting Palo Alto Networks’ Next-Generation Firewalls (NGFW) management interfaces. While Palo Alto’s swift advisories and mitigation guidance offer a starting point for remediation, the broader implications of such vulnerabilities demand attention from organizations globally. The surge in attacks on internet-facing management interfaces highlights an evolving threat landscape and necessitates rethinking how organizations secure critical assets. Who is exploiting the NGFW zero-day? As of now, little is known about the…

December 2, 2024

Will arresting the National Public Data threat actor make a difference?

3 min read - The arrest of USDoD, the mastermind behind the colossal National Public Data breach, was a victory for law enforcement. It also raises some fundamental questions. Do arrests and takedowns truly deter cyberattacks? Or do they merely mark the end of one criminal’s chapter while others rise to take their place? As authorities continue to crack down on cyber criminals, the arrest of high-profile threat actors like USDoD reveals a deeper, more complex reality about the state of global cyber crime.…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature