Texas Cyber Command and Cybersecurity Infrastructure Grants is sponsored by Office of the Governor, Public Safety Office. Grants supporting cybersecurity research, EMP testing infrastructure, and critical infrastructure protection.

State and Local Cybersecurity Grant Program (SLCGP) | Texas Department of Information Resources State and Local Cybersecurity Grant Program (SLCGP) State and Local Cybersecurity Grant Program (SLCGP) Update The Request for Applications (RFA) is now available. Responses are due February 12, 2026.

There are 4 solicitations that align with the FEMA objectives: FEMA Objective 1: Governance and Planning FEMA Objective 2: Assessment and Evaluation FEMA Objective 3: Mitigation FEMA Objective 4: Workforce Development Eligible applicants can apply through the Office of the Governor’s eGrants website. Specific instructions on how to apply and additional eligibility requirements are in the RFA.

The application process will be managed by the OOG. The state matching requirement for FY27 is 30%. eGrants website: https://egrants.

gov.texas. gov/ The federal Infrastructure Investment and Jobs Act (IIJA) , also known as the Bipartisan Infrastructure Law (BIL), was signed into law on November 15, 2021.

One component of the act is the State and Local Cybersecurity Grant Program (SLCGP), which appropriated $1 billion over four years (2022-2025) to address cybersecurity risks and cybersecurity threats to information systems owned or operated by, or on behalf of, state, local, or tribal governments. Texas was allocated approximately $40 million over four years. The allocation requires matching funds that increase through the years.

(Note: Matching funds will be paid by grant sub-recipients.) A minimum of 80% of allocations must be passed through to local governments. In addition, at least 25% of the total funds made available under the grant must be passed through to rural communities.

Grant Roles and Responsibilities The Office of the Governor (OOG) is the State Administrative Agency and serves as the fiscal agent and authorizing official of the SLCGP federal funds and will submit the SLCGP application to CISA and administer sub-recipient grants.

The Department of Information Resources (DIR) serves as the subject matter expert pertaining to all programmatic requirements and federal regulations associated with the SLCGP and will develop a Cybersecurity Plan, establish a Cybersecurity Planning Committee, support development of the Plan, and identify projects to implement utilizing SLCGP funding.

The Cybersecurity Planning Committee is responsible for developing, implementing, and revising Cybersecurity Plans (including individual projects); formally approving the Cybersecurity Plan (along with the chief information officer, chief information security officer or an equivalent official); and assisting with determination of effective funding priorities (i.e., work with entities within the eligible entity’s jurisdiction to identify and prioritize individual projects).

Sub-recipients are local governments as defined in Texas Local Government Code Title 5. c § 176. 001(3) and will submit applications for eligible projects, and if awarded, will accept the grant award, satisfy grant requirements including provide the state match, submit financial and programmatic performance reports, and meet any additional grant terms.

Local governments are eligible sub-recipients. Local governments are defined below. Refer to Texas Local Government Code Title 5.

c §176. 001(3) for more detail. other political subdivisions Rural area is defined as an area encompassing a population of less than 50,000 people that has not been designated in the most recent decennial census as an “urbanized area” by the Secretary of Commerce.

Cybersecurity Planning Committee The planning committee consists of members from state, county, and municipal government organizations and from public education and public health institutions within the State of Texas, and includes representatives of urban, suburban, and rural areas of the State. The State Cybersecurity Coordinator serves as committee chair.

The State Cybersecurity Plan establishes high level goals and finite objectives to reduce specific cybersecurity risks at SLT governments. It includes a description of roles, an assessment of capabilities, resources and timelines for implementing the Plan, and metrics. Submitted projects must align with the Cybersecurity Plan.

State of Texas SLCGP Cybersecurity Plan The (RFA) for year 3 opened December 15,2025 and closed February 12, 2026. Eligible applicants can apply through the OOG eGrants website. Specific instructions on how to apply and additional eligibility requirements are in the RFA posted on eGrants.

The application process will be managed by the OOG. The Cybersecurity Planning Committee will work collaboratively across the state to identify and prioritize individual projects that align with the Cybersecurity Plan. Funding for projects will be released within forty-five days after approval by the Department of Homeland Security's (DHS) Cybersecurity Infrastructure Security Agency (CISA).

SLCGP funded project activities cannot begin until FEMA/CISA have approved a selected project, and the Office of the Governor’s Public Safety Office has released the grant award to the subrecipient. Requirement for CISA Services All sub-recipients are required to participate in the following free services by CISA: Web Application Scanning : an “internet scanning-as-a-service.

” This service assesses the “health” of your publicly accessible web applications by checking for known vulnerabilities and weak configurations. Additionally, CISA can recommend ways to enhance security in accordance with industry and government best practices and standards. https://www.

cisa. gov/resources-tools/services/web-application-scanning Vulnerability Scanning : evaluates external network presence by executing continuous scans of public, static IPs for accessible services and vulnerabilities. This service provides weekly vulnerability reports and ad-hoc alerts.

https://www. cisa. gov/resources-tools/services/cisa-vulnerability-scanning Sub-recipients are also required to join the TX-ISAO: Texas Information Sharing and Analysis Organization (TX-ISAO): a free membership to a forum for entities in Texas to share information regarding cybersecurity threats, best practices, and remediation strategies.

https://dir. texas. gov/information-security/tx-isao Sub-recipients must comply with the Cybersecurity Training requirements described in Section 772.

012 and Section 2054. 5191 of the Texas Government Code. Local governments determined to not be in compliance with the cybersecurity requirements required by Section 2054.

5191 of the Texas Government Code are ineligible for OOG grant funds until the second anniversary of the date the local government is determined ineligible. Government entities must annually certify their compliance with the training requirements using the Cybersecurity Training Certification for State and Local Governments. https://dir.

texas. gov/information-security/statewide-cybersecurity-awar… Best Practices and Methodologies Projects that assist entities with the adoption of these best practices will be prioritized by the Cybersecurity Planning Committee. Approved projects will include only one-time cybersecurity services.

Implement multi-factor authentication. Implement enhanced logging. Implement data encryption for data at rest and in transit.

End use of unsupported/end of life software and hardware that are accessible from the Internet. Prohibit use of known/fixed/default passwords and credentials. Ensure the ability to reconstitute systems (backups); and Migrate to the .

gov internet domain. Frequently Asked Questions (FAQs) Is the grant available to community colleges? Community colleges are eligible sub-recipients in Texas.

Is the grant available to Institutions of Higher Education? Institutions of Higher Education are not eligible sub-recipients in Texas. Is the grant available for charter schools?

Charter schools may be eligible sub-recipients in Texas. For the state match, is it cash match or in kind? Funding used as match must be project-specific related costs.

There may be an opportunity to submit individual project match waivers as well. After submitting an application, contact eGrants, [email protected] , for details about the waiver. For additional information, refer to the federal ( eCFR :: 2 CFR 200.

306 ) and state ( Texas Administrative Code and Texas Grant Management Standards ) guidelines for matching funds. Can anyone in the organization create the eGrants account or is there a best role type for this? Anyone can register for an eGrants account, however the role for grant officials varies.

Each application/subaward must have a project director, financial officer, and authorized official. No person can serve in more than one of these roles. Grant officials must not be related to each other by blood or marriage or have any relationship that creates an actual, potential, or apparent conflict of interest.

The grant officials and their roles are: The Authorized Official (AO) is usually a county judge, mayor, city manager, chairman of a non-profit board, head of a state agency, executive director, etc. They are authorized by the governing body of the organization to: apply for, accept, reject, alter, or terminate the grant; and certify changes made to applications or grants.

The Financial Official (FO) must be either an employee or board member and should be the Chief Financial Officer, Auditor, or Treasurer of the Board for the grantee agency. The employee or board member designated as the FO should have an in-depth understanding of the grantee’s financial tracking system as well as their obligations related to grant and match expenditures.

They are responsible for: maintaining financial records to account for all grant expenditures and funds; completing all required financial reporting at least quarterly. The Project Director (PD) must be an employee of the grantee agency. They are responsible for: the day-to-day operations of the project; and required programmatic reporting.

The Grant Writer (GW) is responsible for: Will the grant pay administrative costs? Yes, expenses directly relating to the administration of the project are allowable, but the costs cannot exceed 5% of the overall budget amount submitted. What types of projects can be submitted?

Projects must align with the state Cybersecurity Plan and can only support one-time services that reduce cybersecurity risks to information systems owned or operated by or on behalf of local governments within Texas. Request for Applications (RFA) is open through 2/12/2026 for year 3. Some documents on this page are in the PDF format.

Please download the Adobe Reader in order to view these documents.