Eric Swalwell Demands Answers Over CISA Workforce Cuts Amid Rising Cybersecurity Threats

The Fight to Protect America’s Digital Frontlines

In an escalating political and national security clash, Representative Eric Swalwell (D-Calif.) has raised alarm over what he describes as a deliberate effort by the Trump Administration to “decimate” the workforce of the Cybersecurity and Infrastructure Security Agency (CISA). Swalwell, who serves as the ranking member of the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection, sent a strongly worded letter to acting CISA Director Madhu Gottumukkala demanding answers on staffing reductions, forced personnel transfers, and the agency’s diminishing ability to defend America’s digital borders.

Swalwell’s letter paints a troubling picture: since January, roughly 760 CISA employees have been let go, while remaining cybersecurity experts are reportedly being reassigned to unrelated duties—specifically, the Department of Homeland Security’s deportation efforts. He argues that this redirection of talent and resources not only weakens the agency’s capacity to respond to cyberattacks but also puts the nation’s critical infrastructure at risk during an era of “unprecedented cybersecurity threats.”

The California lawmaker condemned what he sees as a dangerous reprioritization within DHS. “The Department’s exclusive focus on its mass deportation campaign is coming at the expense of our national security,” Swalwell wrote. He demanded an immediate end to all workforce cuts, reinstatement of dismissed employees, and full disclosure regarding the operational impact of the agency’s downsizing.

Swalwell’s appeal follows months of unanswered inquiries. In April, he requested a briefing on CISA’s staffing plans but says he has yet to receive a response. His latest letter intensifies pressure on CISA to clarify how it intends to protect U.S. networks amid budget shifts, cancelled contracts, and personnel shortages.

He further criticized the agency’s September decision to terminate its $27 million partnership with the Multi-State Information Sharing and Analysis Center (MS-ISAC), a move he argues has stripped CISA of critical third-party collaboration essential to defending state and local governments from attacks. The timing is particularly concerning, given that CISA recently issued an emergency directive warning of widespread intrusions targeting Cisco firewalls.

As of now, CISA has not publicly commented, citing the ongoing government shutdown. But Swalwell’s letter has added urgency to a growing debate over how the United States balances immigration enforcement and cybersecurity protection in an era when both are under intense political and operational strain.

What Undercode Say:

The situation surrounding CISA’s workforce turmoil reflects a deeper strategic tension within the Department of Homeland Security: the tug-of-war between immediate political mandates and long-term national resilience. From an analytical standpoint, the redirection of cybersecurity staff toward deportation-related functions signals a short-term prioritization that risks long-term exposure.

CISA was created in 2018 to serve as the nation’s central nerve center for cyber defense—protecting everything from federal networks to critical infrastructure like power grids, hospitals, and election systems. Weakening that mission through staff reductions or resource reallocation, especially during an era of rising ransomware attacks and state-sponsored cyber aggression, represents not just bureaucratic inefficiency but a structural vulnerability.

Swalwell’s letter is not merely partisan outrage; it’s a reflection of a genuine strategic alarm. The agency’s credibility depends on having skilled, experienced personnel capable of managing complex digital crises. Every cyber expert reassigned to immigration processing represents a gap in the digital wall defending the country’s most vital systems.

Furthermore, terminating the partnership with MS-ISAC—one of the most valuable public-private alliances in cybersecurity—removes a critical layer of intelligence sharing between federal and local governments. This partnership previously acted as an early warning system for cyber incidents, offering real-time threat data to thousands of municipalities. Its loss could delay responses to attacks that spread across networks in seconds.

Analysts have noted that cyber threats have grown not just in volume but in sophistication. From Russian-linked ransomware operations to Chinese espionage campaigns and North Korean crypto heists, the global digital battlefield has expanded beyond the control of underfunded or understaffed agencies. Without robust personnel and partnerships, CISA risks becoming reactive rather than proactive—a dangerous stance in cyber defense.

Politically, Swalwell’s letter also highlights an emerging 2025 election-year theme: the perceived trade-off between border control and cybersecurity. Critics argue that the administration’s heavy investment in deportation operations at the expense of cyber defense reveals a skewed national priority list. Supporters, however, claim that administrative consolidation across DHS components could streamline costs and improve efficiency—though no evidence currently supports such a benefit in this case.

If CISA’s reductions continue, ripple effects could extend far beyond Washington. State and local governments rely heavily on CISA’s expertise, particularly during crises like ransomware attacks on hospitals or schools. Without federal guidance and shared intelligence, these entities are left vulnerable, often forced to fend for themselves against sophisticated global actors.

The stakes could not be higher. Cybersecurity today is not just about protecting data; it’s about safeguarding national trust, economic stability, and democratic processes. Weakening the nation’s lead cyber defense agency amid rising global threats is akin to grounding firefighters during wildfire season.

From a strategic lens, Swalwell’s warning should not be dismissed as political posturing. His letter underscores a critical truth: cybersecurity is not a partisan luxury but a foundational necessity for modern governance. A compromised CISA compromises everyone—from the energy sector to ordinary citizens whose data and infrastructure depend on digital resilience.

🔍 Fact Checker Results

✅ CISA has confirmed workforce reductions and internal transfers since January.
✅ The MS-ISAC partnership termination occurred in September 2025 with a $27 million funding impact.
❌ There is no public record confirming that reassigned employees have returned to CISA roles.

📊 Prediction

If current staffing and funding trends persist, CISA’s operational readiness could decline sharply by mid-2026, leaving federal systems more exposed to foreign intrusion attempts. 🔐 Expect bipartisan pressure to restore funding as high-profile cyber incidents escalate, especially during election season. 🧠