We've written a lot about Hewlett's funding for cybersecurity. But while Hewlett is definitely the biggest funder on this beat, it's not the only one. The Carnegie Corporation of New York is another foundation with an eye on emerging cyber threats.
Recently, it awarded a $200,000 grant to the Carnegie Endowment for International Peace to support the endowment’s ongoing work into cyber warfare. The funds will support the endowment’s work in assessing the opinions of senior government officials in the UK, France, China, Israel, and India on the challenges presented by offensive cyber warfare. The goal is to determine whether states with cyber capabilities should develop voluntary controls on offensive cyber warfare operations. The grant will also connect policy makers with the tech world and military strategists. This is an important step in assessing cybersecurity threats, as it will likely take the political, tech, and military worlds to thwart major cyber warfare threats. You would think that these three worlds have already connected on this issue, but according to Carnegie “to date, the ‘siloing’ of these practitioners [has] impeded sound policy.” (A point that Hewlett is also seeking to address.)
Carnegie money is also funding work on cybersecurity through its "Bridging the Gap" initiative, which supports efforts to help academic experts connect to policymakers. Among the grantees is Columbia University's School of International Public Affairs which got $1 million to launch "a global hub for research and consultation on cyber policy." Here, too, the idea is to break down silos and connect experts across different fields and sectors.
Looking further back, in 2010, the foundation awarded the Brookings Institution a $600,000 grant in support of a two year research project that explored U.S.-China relations through the lens of cybersecurity. And in 2013, it awarded a $200,000 grant to the Bipartisan Policy Center to forward it public discourse work concerning matters of national security, including the threat of cybersecurity.