State & Local Cybersecurity Grant Program

Additional resources

Application Timeline

DATES TASKS
June 9, 2025 Project proposal form available/shared with entities
June 9 - July 11 Application period - technical assistance offered as needed
June 17 First application webinar
July 8 Second application webinar
JULY 11, 2025 APPLICATIONS DUE TO EMD (can submit before) - preparedness.grants@mil.wa.gov
July 12 - Aug. 29 Projects scored and ranked by the Cybersecurity Planning Committee
Sept. 2 Presentation of projects scored to SLCGP Planning Committee
Sept. 10 - 12 Notice of projects selected for funding
January 2026 Grant agreements executed (once funding is released)

 

 

Logo for State and Local Cybersecurity Grant Program

The State and Local Cybersecurity Grant Program (SLCGP) is a federal program that helps state, local, and Tribal governments improve cybersecurity and protect their systems from threats. It is expected to provide $18.4 million in funding for Washington from 2022-2025, with 80% going to local governments, including 25% specifically for rural areas. The remaining 20% may support state projects. State and Local Cybersecurity Grant Program Fact Sheet

The program funds projects such as: firewalls, system testing, cybersecurity monitoring, identity management (multi-factor authentication), training, and policy development. Administered by the Federal Emergency Management Agency (FEMA) and the Cybersecurity and Infrastructure Security Agency (CISA), Washington Technology Solutions (WaTech) handles technical aspects, and the Washington Military Department/Emergency Management Division (WMD/EMD) manages funding.

Fiscal year 2024 applications open this week, with funds available by the end of 2025. The State and Local Cybersecurity Grant Program Planning Committee has approved recommendations for almost 250 projects across the state in the first two rounds of funding.  Applicants are encouraged to apply early for this third round of funding, as projects will be submitted to CISA on a rolling basis this year to speed up the process of addressing needs.

Key Information for FY2024 SLCGP Round 3 Funding

  • Eligible applicants: Only public entities may apply.
     
  • Funding priorities:
    • Water and wastewater entities (per U.S. Department of Homeland Security guidance).
    • Rural entities (25% of funds are reserved for rural areas).
       
  • Application timing:
    • Apply early—funding is awarded on a rolling basis as applications are approved by Washington state and CISA.
    • The earlier you apply, the more funds are likely to be available.
       
  • Application limits:
    • Each entity may submit up to three applications. Choose and prioritize your projects carefully.
       
  • Simplified criteria:
    • Technical alignment, cybersecurity alignment, and readiness scoring have been removed to speed up review.
    • You may still include relevant details from these categories if they strengthen your application.
       
  • Program context:
    • This is the third of four rounds of one-time SLCGP funding.
    • Consider how you will fund any ongoing or future phases of your projects.
       
  • Funding approach in Washington state:
    • Washington aims to distribute funds broadly.
    • Individual project awards are generally capped at $100,000.
       
  • Guidance and questions:
    • Full application guidance and eligibility details are in the federal Notice of Funding Opportunity (NOFO) and the state application.
    • Email questions to: preparedness.grants@mil.wa.gov

  • Application resources:
  • Additional cybersecurity resources 

About the program

The U.S. Department of Homeland Security has providing funding, through the Infrastructure Investment and Jobs Act, to address cybersecurity risks and threats to information systems owned or operated by state, local and territorial governments.

EMD and WaTech leaders, in coordination with a planning committee that has broad-based membership, drafted a statewide strategic cybersecurity plan which was approved by the Cybersecurity and Infrastructure Security Agency (CISA) in July 2023.

Following approval of the plan, the state solicited projects from local jurisdictions, Tribes, and state agencies.  After a rigorous review, more than $6.2 million in grant funding was allocated from the FY22 and FY23 awards. To allocate the remaining FY23 funding, a new project solicitation round will be announced in early 2024.  

While the program continues to be established, this is a great time to assess baseline security measures currently in place. CISA has resources that can help including:

  • Web Application Scanning is an "internet scanning-as-a-service." This service assesses the "health" of your publicly accessible web applications by checking for known vulnerabilities and weak configurations. Additionally, CISA can recommend ways to enhance security in accordance with industry and government best practices and standards.
  • Vulnerability Scanning evaluates external network presence by executing continuous scans of public, static IPs for accessible services and vulnerabilities. This service provides weekly vulnerability reports and ad-hoc alerts. (Email CISA at vulnerability@cisa.dhs.gov with the subject line "Requesting Cyber Hygiene Services" to get started.)

Questions?

State, local and Tribal governments interested in applying for grants are encouraged to send their contact information to preparedness.grants@mil.wa.gov.