New York State SECURE Grant Program
Funding for Cybersecurity
The New York State SECURE grant program provides funding and no-cost technical assistance to help local governments strengthen the cybersecurity of their drinking water and wastewater systems. Centripetal is here to help you understand your options and get what you need to apply.
Maximum award per
eligible entity
Application deadline
at 5:00 PM ET via EFC
online portal
Grant administrator is
Environmental Facilities
Corporation
Eligible entities are
local governments
and qualifying systems
Application Resources
Use these resources to guide your application from preparation through submission.
EFC SECURE Grant Application Checklist
Grant checklist
A phase-by-phase checklist covering pre-application requirements, procurement rules, and disbursement documentation — built to ensure nothing is missed as you prepare and submit.
SECURE Grant & CleanINTERNET: Executive Summary
Executive summary
A concise brief for district leadership covering the compliance mandates, how CleanINTERNET maps to each requirement, suggested application language, and the critical action timeline. Use this to align internal stakeholders and support approval.
Critical Timeline
By April 15
Obtain a Municipal Board Resolution authorizing the grant application.
By April 30
Request a free CAT evaluation from EFC to document your Technical Need.
By May 10
Finalize your Centripetal quote — we provide the three-quote comparison data required by EFC.
May 15 — Deadline
Submit via the EFC Online Portal by 5:00 PM.
How CleanINTERNET Meets the Requirements
CleanINTERNET is an intelligence-led managed security service that fulfills these mandates by actively preventing known threats at the network edge—not just identifying them after the fact.
| NYS requirement | How CleanINTERNET delivers |
|---|---|
| Mandatory Incident Reporting 10 NYCRR 5-E / 6 NYCRR 750-2.7(h) | High Fidelity Alerting Automates the identification of Reportable Incidents (C2 callbacks, data exfiltration, ransomware). Provides the immediate technical evidence needed for the 24-hour DOH/DEC notification. |
| Continuous Network Monitoring Required for systems >50k pop or 10MGD flow | Real-Time Threat Shielding Provides persistent logging of every packet of threat intelligence. Unlike a passive SIEM, it actively monitors and mitigates threats simultaneously. |
| Technical Security Controls 6 NYCRR Part 750-1.2(a) | Automated Policy Enforcement Implements the technical security measures mandated by NYS, by blocking connections to millions of known malicious IPs, domains, and hijacked supply chain assets. |
| Vulnerability Management 10 NYCRR 5-E | Virtual Patching & Shielding While the district works to patch internal systems, CleanINTERNET shields those vulnerabilities from the outside world by blocking the specific exploit traffic used by attackers. |
| Cybersecurity Lead / Expert Oversight Required for larger systems | Managed Intelligence Ops Centripetal Analysts will provide reports and expertise for use by the cybersecurity lead, as well as expert oversight related to the threat landscape and traffic at the internet boundary. |
| Cyber Asset Inventory 6 NYCRR 750-1.2(a)(25) | Traffic Profiling Supports the mandate for a Cyber Asset Inventory by focusing on high risk internet traffic and assets. |
Schedule Time with Centripetal
Have questions about CleanINTERNET or your submission? We'll equip you with the technical justification and procurement support needed to include CleanINTERNET in your grant application.
Security That Actually Prevents
See how CleanINTERNET®—the 24/7 proactive threat prevention solution—can protect your business, your customers, and your reputation.