Local government cybersecurity program moves forward with administrative hire • South Dakota Searchlight

Michael Waldner, of Madison, will lead the effort to establish the state’s local government cybersecurity grant program, Dakota State University announced in a news release Monday.

The Municipal Cybersecurity Grant Program, under the Attorney General’s Office and in partnership with the university, aims to strengthen cybersecurity infrastructure for South Dakota local governments.

Even though the program’s name focuses on municipalities, it’s open to cities and counties. The program will provide “secure email solutions, technical support, risk assessments, and specialized training,” based on the news release.

The Legislature approved $7 million in funding for the program last winter as a response to mounting cybersecurity concerns among city and county governments. Many lack proper training and equipment to defend themselves and the taxpayer money and information they’re entrusted with. 

Waldner previously directed South Dakota’s centralized education email system, which is what lawmakers hoped to model the program after. Waldner held the role for nine years before leaving in 2008. He also served as project manager for FirstNet, the network used by law enforcement in the state. Most recently, he served as coordinator for the ConnectSD Broadband initiative, which aims to expand internet access statewide.

The need for a centralized local government email system has grown in recent years as local governments become larger targets for cybersecurity attacks.

Brown County suffered a cyberattack in 2021 affecting services, and the city of Sioux Falls sent two electronic payments to someone impersonating a vendor in 2018. Hutchinson County was hit by a ransomware attack in 2019, which temporarily shut down accounts that contained receipts and records for $4 million in county business, according to the Yankton Daily Press & Dakotan.

“This program is an important step toward making South Dakota a model of cybersecurity for the nation,” Attorney General Marty Jackley said in the news release.

State and local governments experienced 148% more malware attacks and 51% more ransomware incidents during the first eight months of 2023, compared with the same period in 2022, according to a Center for Internet Security report. 

The 2024 report on ransomware in state and local government identified a 51% drop in ransomware attacks, which is attributed to fewer governments paying ransoms, making them less attractive targets to cybercriminals. But when the attacks are successful, they’re growing more costly to local governments.

The state effort is a four year program, set to end during the summer of 2028, according to the university. An advisory council including representatives from state, local and federal government departments and agencies, as well as cybersecurity organizations in the state, will provide assistance.