The House Subcommittee on Energy this week advanced five recently introduced bills aimed at boosting the physical and cyber security of the United States’ electric grid and other energy infrastructure.
The bills collectively aim to update Department of Energy (DOE) programs, enhance grid and pipeline protections, and prioritize cybersecurity for vulnerable sectors amid rising threats.
One of the bills is H.R. 7258, named the Energy Emergency Leadership Act, which bolsters the Department of Energy’s capabilities to perform its energy emergency functions and respond to risks and incidents.
The second bill is H.R. 7266, the Rural and Municipal Utility Cybersecurity Act. It reauthorizes and supports a cybersecurity program through 2030, providing rural electric cooperatives, small utilities, and public power agencies with advanced cybersecurity tools, technical assistance, and grant funding.
H.R. 7257, the Securing Community Upgrades for a Resilient Grid (SECURE Grid) Act, updates and enhances programs for the physical and cyber security of the energy infrastructure. It aims to build resilience in community-level upgrades and systems.
The Pipeline Cybersecurity Preparedness Act, H.R. 7272, improves the DOE’s coordination and technical support for securing pipelines and LNG facilities. It aims to develop programs to improve collaboration, ensure timely responses to disruptions, and enhance overall resilience in energy fuel supply systems.
The last bill is H.R. 7305, the Energy Threat Analysis Center Act of 2026. It reauthorizes the Energy Threat Analysis Center (ETAC) to conduct preventative analysis, information sharing, and coordination on cyber threats to energy systems.
Although the five bipartisan cybersecurity bills advanced unanimously from the House Energy Subcommittee, they still face a lengthy path ahead, including full committee approval, a House floor vote, Senate consideration, and settling any disputes.
The Department of Energy recently conducted its annual Liberty Eclipse cybersecurity exercise, which trains power companies, government officials, and industry experts to respond to potentially disruptive cyberattacks targeting electricity and natural gas infrastructure.
Through Liberty Eclipse, the DOE develops and runs large-scale, interactive cybersecurity exercises that provide hands-on experience in defending against advanced threats.
Threat actors regularly target the global energy sector, including for espionage and destructive attacks.
Related: Default ICS Credentials Exploited in Destructive Attack on Polish Energy Facilities
Related: Phishers Abuse SharePoint in New Campaign Targeting Energy Sector
Related: Bill Aims to Create National Strategy for Quantum Cybersecurity Migration
