Your browser does not support JavaScript!

Grant Programs

Now Accepting Applications

The State and Local Cybersecurity Grant Program (SLCGP) is now accepting applications for Phase 2 projects, in the areas of:

  • Vulnerability
  • Secure Remote Network Access
  • Asset Inventory
  • Data Inventory
  • Endpoint Detection and Response
  • Firewalls

 

Key Dates:

Feb. 20 - Application deadline

March 20 - Virginia Cybersecurity Planning Committee approves project budgeting

March 31 - Applicants notified of decision

April 11 - Applicants acceptance of project award

 

State and Local Cybersecurity Grant Program (SLCGP)​

On Sept. 16, 2022, the Department of Homeland Security (DHS) announced a first-of-its-kind cybersecurity grant program specifically for state, local, and territorial (SLT) governments across the country.​​​

VITA, in partnership with the State Administrative Agency (SAA) for the Commonwealth, the Virginia Department of Emergency Management, has applied and been approved for all available program years.​

​Virginia participation in the SLCGP is focused on:​

  • Achieving improvements for as many qualified entities as possible​

  • Making it straightforward for qualified entities to participate ​while meeting all requirements outlined in the Notice of Funding Opportunities associated with the federal grant program.​

These two focus areas resulted in a program design that:​

  • Provides opportunities for qualified entities to participate without taking on the burden of federal grant management requirements​

  • Creates project execution types that provide the resources needed to implement and maintain improvements for qualified entities that may not have the staff to support​

  • Involves applications that are relatively simple​

While Virginia's approach to the SLCGP is different from many grant programs, it remains dedicated to managing and reducing systemic cyber risk through the objectives outlined in SLCGP Notices of Funding Opportunity.​

For more information on the federal SLCGP program, visit https://www.cisa.gov/cybergrants/slcgp.​

Virginia Cybersecurity Planning Committee (VCPC)​

The VCPC, a requirement of the SLCGP, is comprised of cybersecurity and IT leaders from state and local government, and the private sector. All VCPC members are appointed by Governor Youngkin.

Purpose​

The VCPC is responsible for creating and maintaining Virginia’s Cybersecurity Plan. They also assist with determining funding priorities and aligning investments with closing capability gaps or sustaining capabilities.

Relevant Legislation

Learn More

Cybersecurity Plan

Virginia's statewide cybersecurity plan, created by the VCPC, represents a continued commitment to improving and supporting a whole of state approach to cybersecurity. The plan also meets the requirement of the current U.S. Department of Homeland Security guidelines for the SLCGP.​

The Cybersecurity Plan includes actionable and measurable goals and objectives focused on: inventory and control of technology assets, software and data, threat monitoring, threat protection and prevention, data recovery and continuity, and understanding an organization’s cybersecurity maturity level. They are designed to support the Commonwealth in planning for effective security technologies and navigating the ever-changing cybersecurity landscape.​

Cybersecurity Plan Vision for Improving Cybersecurity​

  • Create a cybersecurity ecosystem supporting a whole of state approach for state and local governments to safeguard critical infrastructure, protect Virginians’ data, and ensure the continuity of essential services. ​

Cybersecurity Plan Mission​

  • To further establish and enhance the cybersecurity capabilities of state, local, and tribal government entities in Virginia by providing a framework of technology and services to effectively identify, mitigate, protect, detect, and respond to cyber threats. Through leveraging of shared capabilities, strategic planning, and common technology the Commonwealth of Virginia strives to efficiently and effectively protect the confidentiality, integrity, and availability of critical systems, data, and services that benefit Virginians.​

View the 2022 Virginia Cybersecurity Plan.​

State Cost Share

Each program year of the SLCGP requires a cost share:

Program Year Cost Share
Federal FY 2022 10%
Federal FY 2023 20%
Federal FY 2024 30%
Federal FY 2025 40%

This cost share is required for all spending from the grant, whether for local passthrough grants, statewide projects or management and administration. ​

In 2022, the Virginia General Assembly appropriated state cost share funds of more than $4.9 million. These funds are being used to minimize and/or eliminate the need for qualified entities to provide cost share funds to participate in SLCGP projects.

Projects

Now Accepting Applications

The State and Local Cybersecurity Grant Program (SLCGP) is accepting applications for Phase 2 projects, in the areas of:

  • Vulnerability
  • Secure Remote Network Access
  • Asset Inventory
  • Data Inventory
  • Endpoint Detection and Response
  • Firewalls

Ongoing Projects

  • Cyber threat indicator information sharing  -  funding a security operations center

  • Cybersecurity plan and assessments  -  funding to establish the Virginia Cybersecurity Plan and complete a cybersecurity plan capability assessment​

  • Management and administration  -  funding to provide for the administration, oversight and compliance of the grant award

Completed Projects

  • Cybersecurity Plan Capability Assessment Project  -  funding to conduct baseline assessments against the state-wide cybersecurity plan program objectives

FAQs: State and Local Cybersecurity Grant Program

To learn more about the State and Local Cybersecurity Grant Program (SLCGP), visit frequently asked questions (FAQs).

Stay Connected

  1. Join the VDEM listserv for this grant:

  2. Attend a Virginia Cybersecurity Planning Committee (VCPC) meeting or review past meeting materials:

  3. Contact the cybercommittee@vita.virginia.gov with any questions