Now Accepting Applications
The State and Local Cybersecurity Grant Program (SLCGP) is now accepting applications for Phase 2 projects, in the areas of:
- Vulnerability
- Secure Remote Network Access
- Asset Inventory
- Data Inventory
- Endpoint Detection and Response
- Firewalls
Key Dates:
Feb. 20 - Application deadline
March 20 - Virginia Cybersecurity Planning Committee approves project budgeting
March 31 - Applicants notified of decision
April 11 - Applicants acceptance of project award
State and Local Cybersecurity Grant Program (SLCGP)
On Sept. 16, 2022, the Department of Homeland Security (DHS) announced a first-of-its-kind cybersecurity grant program specifically for state, local, and territorial (SLT) governments across the country.
VITA, in partnership with the State Administrative Agency (SAA) for the Commonwealth, the Virginia Department of Emergency Management, has applied and been approved for all available program years.
Virginia participation in the SLCGP is focused on:
-
Achieving improvements for as many qualified entities as possible
-
Making it straightforward for qualified entities to participate while meeting all requirements outlined in the Notice of Funding Opportunities associated with the federal grant program.
These two focus areas resulted in a program design that:
-
Provides opportunities for qualified entities to participate without taking on the burden of federal grant management requirements
-
Creates project execution types that provide the resources needed to implement and maintain improvements for qualified entities that may not have the staff to support
-
Involves applications that are relatively simple
While Virginia's approach to the SLCGP is different from many grant programs, it remains dedicated to managing and reducing systemic cyber risk through the objectives outlined in SLCGP Notices of Funding Opportunity.
For more information on the federal SLCGP program, visit https://www.cisa.gov/cybergrants/slcgp.
Virginia Cybersecurity Planning Committee (VCPC)
The VCPC, a requirement of the SLCGP, is comprised of cybersecurity and IT leaders from state and local government, and the private sector. All VCPC members are appointed by Governor Youngkin.
Purpose
The VCPC is responsible for creating and maintaining Virginia’s Cybersecurity Plan. They also assist with determining funding priorities and aligning investments with closing capability gaps or sustaining capabilities.
Relevant Legislation
Learn More
Cybersecurity Plan
Virginia's statewide cybersecurity plan, created by the VCPC, represents a continued commitment to improving and supporting a whole of state approach to cybersecurity. The plan also meets the requirement of the current U.S. Department of Homeland Security guidelines for the SLCGP.
The Cybersecurity Plan includes actionable and measurable goals and objectives focused on: inventory and control of technology assets, software and data, threat monitoring, threat protection and prevention, data recovery and continuity, and understanding an organization’s cybersecurity maturity level. They are designed to support the Commonwealth in planning for effective security technologies and navigating the ever-changing cybersecurity landscape.
Cybersecurity Plan Vision for Improving Cybersecurity
- Create a cybersecurity ecosystem supporting a whole of state approach for state and local governments to safeguard critical infrastructure, protect Virginians’ data, and ensure the continuity of essential services.
Cybersecurity Plan Mission
- To further establish and enhance the cybersecurity capabilities of state, local, and tribal government entities in Virginia by providing a framework of technology and services to effectively identify, mitigate, protect, detect, and respond to cyber threats. Through leveraging of shared capabilities, strategic planning, and common technology the Commonwealth of Virginia strives to efficiently and effectively protect the confidentiality, integrity, and availability of critical systems, data, and services that benefit Virginians.
View the 2022 Virginia Cybersecurity Plan.
State Cost Share
Each program year of the SLCGP requires a cost share:
Program Year | Cost Share |
---|---|
Federal FY 2022 | 10% |
Federal FY 2023 | 20% |
Federal FY 2024 | 30% |
Federal FY 2025 | 40% |
This cost share is required for all spending from the grant, whether for local passthrough grants, statewide projects or management and administration.
In 2022, the Virginia General Assembly appropriated state cost share funds of more than $4.9 million. These funds are being used to minimize and/or eliminate the need for qualified entities to provide cost share funds to participate in SLCGP projects.
Projects
Now Accepting Applications
The State and Local Cybersecurity Grant Program (SLCGP) is accepting applications for Phase 2 projects, in the areas of:
- Vulnerability
- Secure Remote Network Access
- Asset Inventory
- Data Inventory
- Endpoint Detection and Response
- Firewalls
Ongoing Projects
-
Cyber threat indicator information sharing - funding a security operations center
-
Cybersecurity plan and assessments - funding to establish the Virginia Cybersecurity Plan and complete a cybersecurity plan capability assessment
-
Management and administration - funding to provide for the administration, oversight and compliance of the grant award
Completed Projects
-
Cybersecurity Plan Capability Assessment Project - funding to conduct baseline assessments against the state-wide cybersecurity plan program objectives
FAQs: State and Local Cybersecurity Grant Program
To learn more about the State and Local Cybersecurity Grant Program (SLCGP), visit frequently asked questions (FAQs).
Stay Connected
-
Join the VDEM listserv for this grant:
-
Visit Virginia Department of Emergency Management (govdelivery.com), enter your email address, and then select the "State and Local Cybersecurity Grants Program" from the list (near the bottom). All notifications and reminders for grant applications will be shared via this email list.
-
-
Attend a Virginia Cybersecurity Planning Committee (VCPC) meeting or review past meeting materials:
-
VCPC meetings provide the public venue for oversight of the SLCGP, where attendees learn more about the strategic direction of the program.
-
Visit Virginia Regulatory Town Hall - Meetings to view past meeting materials and see upcoming meeting dates, times, locations and electronic access information.
-
To register for meeting notifications, sign up here: Virginia Regulatory Town Hall - Public user registration
-
-
Contact the cybercommittee@vita.virginia.gov with any questions