DoJ budgets Zero Trust
The U.S. Department of Justice has requested $110.3 million in fiscal 2027 funding to continue its Zero Trust cybersecurity work, signalling federal buyers expect sustained architecture and evidence, not one‑off projects. That funding posture increases demand for SIEM artefacts that demonstrate control coverage, onboarding completeness and measurable identity telemetry. (fedscoop.com)
The old federal cybersecurity model worked like a castle moat: get inside the network, and you were often treated as trusted. Zero trust flips that around and checks every user, device, and request as if the network is already compromised. (nist.gov) The Office of Management and Budget made that shift official in January 2022, when it told federal agencies to meet specific zero trust goals by the end of fiscal year 2024. Those goals covered identity, devices, networks, applications, and data, so this was never a one-box software purchase. (whitehouse.gov) The Department of Justice is now asking for $110.3 million in fiscal year 2027 to keep pushing that work forward. The request sits inside its Justice Information Sharing Technology account, which totals $149 million for 2027, up from $38.5 million enacted for 2026. (justice.gov) That jump is striking because Justice was still dealing with the aftershocks of the 2020 SolarWinds breach, and FedScoop reports the department’s cyber funding had been cut by $108 million in fiscal 2024. A request this large says the department is treating zero trust as a multi-year rebuild, not a cleanup project. (fedscoop.com) (justice.gov) The federal playbook for this work has also gotten more concrete. The Cybersecurity and Infrastructure Security Agency’s Zero Trust Maturity Model breaks the job into five pillars: identity, devices, networks, applications and workloads, and data. (cisa.gov) That structure changes what agencies buy. If every login, laptop, server, and data request has to be checked, agencies need systems that can prove who got access, from what device, under which policy, and whether that decision matched the rules. (cisa.gov) (whitehouse.gov) That is why the budget signal reaches beyond firewalls and identity tools into security information and event management systems, which are the giant logbooks that collect evidence from across an organization. A zero trust program without those records is like an airport security line with no cameras, no boarding logs, and no way to show who actually got through. (nist.gov) (cisa.gov) Federal buyers are likely to press vendors for proof of control coverage, proof that every major system is onboarded, and identity telemetry that can be measured over time. The request from Justice does not just fund tools; it funds the evidence trail needed to show Congress, auditors, and agency leaders that zero trust is operating in real life. (justice.gov) (whitehouse.gov) Congress can still change the final number, because a president’s budget request is a proposal, not an enacted law. But when the Department of Justice asks for $110.3 million after the government already set zero trust deadlines and maturity models, it tells the market this architecture is now a standing budget line. (justice.gov) (whitehouse.gov)
