Electric Co-ops Work to Strengthen Cyber Workforce, Tenn. CEO Tells Congress

Chris Jones (second from right), president and CEO of Middle Tennessee Electric, testifies before the House Homeland Security Committee about the obstacles that rural electric co-ops face in recruiting cybersecurity professionals. (Photo By: Denny Gainer/NRECA)

As cybersecurity threats to utilities grow, electric cooperatives are taking action to attract cyber experts to their rural communities to protect their systems from cyberattacks, the CEO of Middle Tennessee Electric told a House panel Wednesday.

“Co-ops are increasingly focused on building local talent through partnerships with educational institutions and providing opportunities for remote work and professional development,” said Chris Jones, president and CEO of the 340,000-member co-op, in testimony before the House Homeland Security Committee at a hearing on America’s cyber workforce.

“We are also seeing partnerships between large generation and transmission cooperatives, statewide associations, and distribution co-ops to share tools, equipment, and expertise across shared systems to bolster cyber defenses.”

NRECA is also leveraging members’ fees and federal dollars to help co-ops attract cybersecurity talent, build professional and mentoring networks, and provide training opportunities, Jones said.

One of those opportunities, he told lawmakers, is NRECA’s annual Co-op Cyber Tech conference. That event brings together co-op cybersecurity experts to share their knowledge and help others develop skills through simulated cyber emergencies that provide hands-on experience.

“While electric cooperatives are making smart investments and building strategic partnerships to develop our cyber professionals, more work needs to be done,” Jones said.

Since electric co-ops are not-for-profit businesses, they have a tough time competing with for-profit companies that can afford to pay more for cyber professionals, he said.

“Rural areas also face significant challenges in developing a robust cybersecurity talent pool,” Jones told lawmakers. “One of the primary issues is the limited access to specialized education and training programs.

“Many rural regions lack institutions that offer advanced cybersecurity courses, making it difficult for residents to acquire, and keep up to date on, the necessary skills and changing techniques and tactics locally.”

These obstacles can put co-ops at a disadvantage at a time when “the cybersecurity threat landscape for electric utilities is increasingly complex and perilous,” Jones said.

“Threat actors, ranging from state-sponsored groups to cybercriminals, exploit vulnerabilities for geopolitical or monetary gains,” he said. “These attacks have the potential to disrupt the power supply, causing widespread outages and economic damage. The rise of sophisticated malware, ransomware, and phishing attacks further exacerbates the risk.”

Speaking on behalf of NRECA as well as the co-op he leads, Jones praised committee Chairman Mark Green, R-Tenn., for introducing a bill called the Cyber PIVOTT Act that would expand cybersecurity internship opportunities to electric co-ops in rural communities.

“Developing a talent pipeline with off-ramps into rural communities will help grow a local, skilled cybersecurity workforce to protect critical infrastructure in these communities,” he said.

“Initiatives like those in the Cyber PIVOTT Act bring much-needed focus to the cyber workforce needs of rural America … Co-ops and our rural communities have a lot to offer in protecting America’s critical infrastructure.”

Erin Kelly is a staff writer for NRECA.