Defense Bill Expands Cyber Authorities, Tech Adoption and Talent Pipeline
U.S. federal lawmakers are poised to deliver a boost in cyber spending for U.S. warfighters following a year of major cuts to civilian cyber teams and government information technology divisions.
See Also: Going Beyond the Copilot Pilot – A CISO’s Perspective
House lawmakers this week advanced the $901 billion compromise version of the fiscal year 2026 National Defense Authorization Act to the Senate, approving a 4.1% increase in military cyber funding that would bring total Pentagon cyber spending to nearly $15.1 billion.
The funding increase includes $9.1 billion for core cybersecurity programs and approximately $612 million for cyber-related research efforts. It follows congressional efforts to treat cyberspace as a core warfighting domain, with increased cyber investments across operations, acquisition reform and weapons platform modernization. The NDAA outlines expanded investments, authorities and oversight for military cyber operations, including new requirements to better coordinate the planning, programming and budgeting of the Cyber Mission Force and initiatives to help close the cyber talent gap.
The legislation would mandate harmonization efforts for cybersecurity requirements across defense contracts, an effort intended to reduce duplicative and inconsistent compliance burdens. The move is expected to affect thousands of contractors that support military networks, platforms and logistics systems. Lawmakers called on the Pentagon to prioritize commercial solutions where reduced regulatory friction for secure software adoption and accelerate pathways for transitioning innovative cyber technologies from pilot programs into operational use.
The bill also expands authorities tied to cyber workforce recruitment and retention, allowing the Department of Defense greater flexibility to attract and retain cyber talent critical to sustaining the Cyber Mission Force and defending operational networks. Lawmakers also directed studies on expanding reserve component integration into cyber missions, reflecting ongoing efforts to tap part-time and civilian cyber expertise to bolster surge capacity during crises or sustained cyber campaigns.
The bill would tighten certain reporting requirements for senior cyber leadership, modifying oversight of the senior military advisor for cyber policy to ensure cyber risks and operational needs are reflected earlier in defense planning decisions. The legislation also calls for demonstrations of near real-time monitoring capabilities embedded directly into weapon systems – an effort aimed at improving cybersecurity and oversight of platforms that increasingly rely on software-defined components.
The compromise version sent to the Senate advances post-quantum planning within the Pentagon, with lawmakers directing the department to develop a strategy to ensure cryptographic systems are prepared to adopt quantum-resistant algorithms and practices. The bill also includes several acquisition reforms aimed at accelerating secure software delivery, tasking DoD with modernizing tests and evaluating infrastructure using software-driven approaches and further aligning engineering standards across programs.
The increased cyber funding throughout the bill stands in contrast to the civilian technology landscape, where modernization programs have slowed or stalled amid expiring funding mechanisms and reduced headcount. Federal cyber leaders have cautioned that shrinking civilian capacity could create significant risks for shared services and cross-government cyber defense coordination (see: US Federal Modernization Funds Slashed in Senate Bill).