The Bipartisan Infrastructure Law (Infrastructure Investment and Jobs Act), passed in late 2021 is a $1.2 trillion dollar effort to fund the rebuilding, supplementing or modernizing of the nation’s transportation, communication, and environmental protection, all under the guise of the National Security Strategy. While the percentage of money doled out via grants and direct payment to all states and territories is a bit too complicated for the intent of this article, on first glance, it seems that cybersecurity won’t get the same benefit out of the law as areas such as the Department of Transportation and the Environmental Protection Agency. A surface reading could lead one to conclude that the bulk of the infrastructure falls into physical environmental categories, but that fails to consider the substantial role cyber plays in infrastructure.
Within each department or departments affected, money can and will be spent on cybersecurity professionals, especially those that have an existing security clearance and experience. In addition, the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), will have funding to bolster their cyber workforce, supporting the individual sixteen areas of critical infrastructure.
When it comes protecting infrastructure, it’s clear cybersecurity careers play a role in almost every element, from transportation to wastewater supply. As ransomware attacks skyrocket, infrastructure remains specifically vulnerable. The Environmental Protection Agency is the lead office in protecting the cybersecurity of the water/wastewater sector and his hiring, in some capacity, cybersecurity professionals, to include threat intelligence analysts. Others, like the Department of Energy and multiple agencies that fall under DHS, are either hiring or are expected to hire more cyber related talent.
Critical Infrastructure Careers Growing Across the Country
Two observations have stuck in my head as I have watched the infrastructure bill unfold over the past year. One is the strong possibility that many of these jobs will eventually shift to government contractors. This has happened rapidly over the last ten years in the Department of Defense. While protecting critical infrastructure may seem an inherently governmental function, as government agencies continue to struggle to hire talent and the breadth of infrastructure that needs protection grows, the cyber infrastructure sector is one that could see significant – and lucrative – advancement in the years to come.
The second observation is that while the funding is not near the levels of federal agencies, as noted, state and local jobs requiring security clearances could also quite possibly rise with the increase in dollars towards infrastructure. My state, Kansas, has been very proactive in the inclusive planning process on how this money could, should, and even would be spent. See https://kshub.org/ . Each state is likely building its own infrastructure case (and budget plans) as we speak, increasing local and municipal demand for cleared talent with cybersecurity or critical infrastructure chops.
If you already have a clearance and/or experience in cybersecurity or threat intelligence, consider expanding the breadth of your career search beyond the typical government contracting sphere. Adventure is out there – in states, municipalities, and in support of critical infrastructure of Kansas to Alaska to Connecticut. Whether you’re a veteran or recent college grad with cybersecurity certifications and interests, infrastructure is a career path worth pursuing.
