The FEMA State and Local Cybersecurity Grant Program (SLCGP), established by the Infrastructure Investment and Jobs Act (IIJA), provides support to state, local, tribal, and territorial (SLTT) governments to strengthen their cybersecurity posture. Idaho’s Office of Emergency Management (IOEM) leads the implementation of this program for local governments, offering cybersecurity services to enhance resilience and reduce the impact of cyber threats.
FY22 SLCGP Application Instructions
Begin the sign up process for the FY 2022 State and Local Cybersecurity Grant Program by reading the FY22 SLCGP Idaho Local Consent Form – Final.pdf document to determine if your local entity has cybersecurity needs that might be addressed under this grant program. If your local authorities agree, complete and sign the agreement.
Note: To complete this form, you must use Adobe Reader 8 or above. Go here to find the most current version. Download Adobe Acrobat Reader: Free PDF viewer
After your entity leaders read the Agreement/Consent form and determine they would like to participate, follow the steps below to complete the form:
- Enter Local Entity’s Name.
- Enter Local Entity’s Address.
- Enter the Authorized Official’s Name.
- Enter the Authorized Official’s Title.
- Enter the Authorized Official’s Email Address.
- Enter the Date the document is signed.
- In the Signature block, select an existing Digital Signature or Configure a New Digital ID and sign.
- The form will ask you to save a copy of the Consent Document. Save As “FY22SLCGP Consent Form [Your Local Entity].pdf” to a convenient local folder.
Email a copy of your signed Consent Agreement to SLCGP22@imd.idaho.gov.
When IOEM receives your completed form, we will add you to the group that will participate in the services provided by the grant. You can expect to be contacted by one of our Regional Cybersecurity Area Field Officers.
Among the first tasks you will be guided through is a Self-Assessment and Gap Analysis. The results of these assessments will guide IOEM and the Idaho Unified Statewide Cybersecurity Planning Committee in selecting a set of remediation options to address identified gaps utilizing future year State and Local Cybersecurity Grant Program funding. Those Local Government Entities that have submitted the Local Agreement/Consent From and completed a Self-Assessment and Gap Analysis will be eligible to participate in the Cybersecurity Planning Committee‘s selected mediation options funded in future years.
Frequently Asked Questions
Local governments can apply for the State and Local Cybersecurity Grant Program.
Eligible local governments include counties, municipalities, cities, local public authorities, school districts, councils of governments, special districts (such as water, fire protection, sewer, highway, and library districts), tribal organizations, and rural communities. These entities apply as subrecipients through the state to receive funding from the SLCGP.
The SLCGP is designed to offer local governments, especially those in rural and frontier areas, essential cybersecurity services that they might not otherwise be able to afford. Program benefits include:
- Increased Cybersecurity Resilience: Address vulnerabilities and build a strong defense against cyber threats.
- Compliance with State and Federal Requirements: Ensure systems meet current cybersecurity regulations.
- Protection Against Cyberattacks: Safeguard critical infrastructure, services, and sensitive data from growing cybersecurity threats.
- Local, in person support: IOEM will deploy regional Cybersecurity Area Field Officers (CAFO) to assist local participating entities in implementing cybersecurity measures.
Cybersecurity Area Field Officers, working under IOEM, are dedicated to helping local governments improve their cybersecurity while respecting their autonomy. Here’s how CAFOs will assist local entities:
- Guide Cybersecurity Assessments: CAFOs help local entities identify vulnerabilities by conducting assessments, including the National Cybersecurity Review (NCSR).
- Support Cybersecurity Planning: CAFOs assist in developing or improving cybersecurity plans, governance structures, and incident response strategies tailored to specific needs.
- Offer Technical Assistance: From monitoring systems to implementing cyber defenses, CAFOs provide hands-on support to ensure effective cybersecurity measures.
- Facilitate Coordination: CAFOs bridge local, state, and federal cybersecurity efforts, helping to coordinate services and resources that your entity can benefit from.
- Organize Training: CAFOs provide access to training to improve local staff’s cybersecurity skills and enhance response capabilities.
- Assist in Incident Response: In case of a cyber incident, the CAFOs offer guidance, helping to manage threats and support rapid recovery with minimal disruption to services.
To maximize the program’s impact, and due to limited resources, IOEM delivers best practice cybersecurity services in lieu of direct grant funding. The services and estimated statewide costs include:
- Risk Assessment and Gap Management ($900,000): Conducting assessments like the NCSR to identify vulnerabilities and develop mitigation strategies.
- Cybersecurity Governance and Planning ($450,000): Assisting with the establishment of governance structures, cybersecurity policies, and response plans.
- Cybersecurity Training ($330,440): Providing training programs to enhance local staff’s skills and response capabilities.
The State and Local Cybersecurity Planning Committee determined that providing small, short-term cash grants would not sufficiently address the widespread cybersecurity gaps across Idaho’s local jurisdictions. Instead, services provided by experienced cybersecurity professionals will create sustainable, long-term improvements. This approach ensures that all local entities—regardless of size or resources—benefit from comprehensive cybersecurity solutions.
The Idaho Office of Emergency Management Federal Fiscal Year 2022 State and Local Cybersecurity Grant Program Application/Consent Agreement is a formal document that local governments must sign to participate in the SLCGP. By signing this agreement, your entity consents to receive assessments, training, and technical assistance to improve your cybersecurity posture under the program.
To participate, local governments must:
- Sign the Local Application/Consent Agreement: This formalizes your entity’s participation in the program.
- Complete the National Cybersecurity Review (NCSR): An annual assessment that helps identify and address your cybersecurity needs.
No. There are no match requirements for local entities to participate.
If your organization is ready to take advantage of the services offered by the SLCGP, follow these steps:
- Complete and sign the Local Application/Consent Agreement.
- Submit the signed agreement to SLCPG@imd.idaho.gov.
- Work with your assigned Cybersecurity Field Officer to begin receiving the services.
Questions?
Cybersecurity/Critical Infrastructure Manager
Chris Volmer
cvolmer@imd.idaho.gov