2022 Special Session I

Budget Amendments - HB30 (Conference Report)

View Budget Item
View Budget Item amendments

State and Local Cybersecurity Grant Program

Item 93 #1c

Item 93 #1c

First Year - FY2023 Second Year - FY2024
Virginia Information Technologies Agency FY2023 $4,921,400 FY2024 $0 GF
FY2023 $21,396,396 FY2024 $0 NGF

Page 79, line 42, strike "$52,932,842" and insert "$79,250,638".

Page 81, after line 6, insert:

"F.1. Out of the amounts provided in this item, $4,921,400 the first year from the general fund and $21,396,396 in nongeneral fund appropriation is for cybersecurity grant awards under State and Local Cybersecurity Improvement Act subtitle of the Infrastructure Investment and Jobs Act of 2021, P.L. 117-58. The Virginia Information Technologies Agency (the agency) shall take the necessary steps to obtain and use the cybersecurity grant funding that is available to Virginia under this program. The general fund appropriation provided herein is intended to serve as the full program match for grant availability under this program. Any balances remaining from the general fund appropriation identified in this paragraph shall not revert to the general fund at the end of the fiscal year, but shall be brought forward and made available to serve as state matching dollars pursuant to securing the federal grant awards.

2. In accordance with the federal grant requirements, the agency shall establish, and identify candidates for appointment by the Governor to a planning committee that includes members from (i) state government; counties, cities, and towns; institutions of public education and health within Virginia; and (ii) suburban, rural, and high-population jurisdictions. No less than half of the members shall have substantial professional experience in cybersecurity or information technology. The Chief Information Officer of the Commonwealth, or the Chief Information Security Officer as designee, shall be the Chair of the planning committee. Staffing for the planning committee shall be provided by the agency. In addition, the agency shall: (i) develop a cybersecurity plan, present such plan to the planning committee for approval, and submit such plan to the appropriate federal officials in compliance with the federal program requirements; (ii) propose priorities for grant funding for the planning committee's consideration and approval, in establishing priorities, the committee shall consider the needs of local school divisions; (iii) approve, manage, and allocate grant funding once received, ensuring that the grants fit within the priorities approved by the planning committee; and (iv) report on program's activities to the House Appropriations Committee and the Senate Finance and Appropriations Committee by October 1 of each year of the program. To the extent permitted by federal grant guidelines, the agency may retain a portion of the federal grant funding to reimburse actual costs incurred in providing support and administration of the provisions of this paragraph."


(This amendment provides $4.9 million the first year in general fund and $21.6 million in nongeneral fund appropriation to serve as the estimated total cost of state matching funds related to federal cybersecurity grant funding available to Virginia under the State and Local Cybersecurity Improvement Act subtitle of the Infrastructure and Jobs Act of 2021. The amendment includes mandatory carryforward language for these funds to be available in accordance with the federal grant drawdown timeline. The amendment also adds language directing the Virginia Information Technologies Agency (VITA) to take the steps necessary to obtain federal cybersecurity grant funding, comply with federal guidelines, and develop a related planning committee. There is a companion amendment to fiscal year 2022 that adds the same language directing the agency to take steps to obtain the federal funds and establish the planning committee.)