New Minnesota Law Aims to Enhance Cyber Defenses

There were more than 1,000 cybersecurity incidents, including data breaches and ransomware attacks, in Minnesota in 2023 — hitting schools, universities, and government offices, according to a WCCO news story. As cyber threats continue to increase and evolve, many state and local governments are implementing cybersecurity plans, like Minnesota’s Cybersecurity Plan from Minnesota IT Services (MNIT), and strengthening their cyber defenses.  

A new state law, effective Jan. 1, 2025, aims to enhance cyber defenses by collecting information about cybersecurity incidents in Minnesota. Cities, including law enforcement agencies, are subject to these requirements. A cybersecurity incident is defined by law as an action taken using an information system or network that results in an actual or potentially adverse effect on an information system, network, or the information it contains.  

The law requires public agencies, including cities, counties, higher education, school and related intermediate districts, law enforcement agencies, state agencies, and townships to report cybersecurity incidents beginning Dec. 1, 2024. Also, if a cybersecurity incident affects a public agency, contractors or vendors working with the government must inform the agency about the incident. The goal is to collect information that can help all agencies understand how security controls are bypassed and assist other organizations in defending IT resources and data. 

Required entities should report cybersecurity incidents that impact services, systems, or people. This includes successful cyber events that compromise agency accounts, systems, data, or that bypass security controls and target government systems. Examples include compromised accounts and passwords, defacement, denial of service (DoS), network attack, potential data exposure, ransomware, social engineering, unauthorized access, web application attack, or attacks targeting systems that control industrial processes, such as factories and utilities.  

The report must be made within 24 hours if criminal justice information and systems are impacted and within 72 hours of the government entity, public agency or the contractor discovering the incident or reasonably identifies or believes that a cybersecurity incident has occurred. Cybersecurity incident reporting is in addition to other reporting requirements, like those for the Office of the Legislative Auditor and data breach reports required by Minnesota law. 

How to file a cyber incident report

The required report can be completed online through MNIT’s Cybersecurity Incident Reporting webpage. Cyber incidents reports can also be made over the phone or via email at the contact information listed below:   

• MNIT Enterprise Service Desk: 651-297-1111 or 1-888-717-6638; cn.mnit@state.mn.us
• Minnesota Fusion Center: 651-793-3730 or 1-800-422-0798; mn.fc@state.mn.us
• Bureau of Criminal Apprehension – Information Security Office: 651-793-2500 or email emergent criminal justice information and system issues to bca.servicedesk@state.mn.us and bca.iso@state.mn.us
• Emergent election issues can also be sent to MNOSS.cybersecurity@state.mn.us

Before sharing threat reports with local entities, the reports will be anonymized to ensure the names and details of impacted organizations remain confidential.

If you have any comments or need further guidance, contact me at tstille@lmc.org or (651) 215-4051. 

In the meantime, stay safe!    

Tracy

National Law Enforcement Suicide Awareness Day 2024

The escalating crisis of mental health within law enforcement has prompted the creation of wellness programs within agencies or departments, including Peer Support groups, online resources, and ongoing therapy. However, the topic of suicide remains clouded by stigma and silence, making honest conversations both crucial and difficult.

The statistics are sobering. Suicide is the leading cause of death among firefighters, emergency medical technicians (EMTs), and police. According to Ruderman Family Foundation, police and firefighters are more likely to die by suicide than working in the line of duty. For many, that is where the conversation about law enforcement and first responder suicide stops.

This year, Minnesota’s public safety agencies have witnessed significant loss by suicide, with each incident just as tragic as the one before. This begs the question, why aren’t agencies getting better at seeing the signs and why isn’t our standard approach of “ask, probe, and refer” working?  

Cumulative Trauma and Compartmentalizing

The truth is that the primary drivers of suicide risk are different for first responders. Suicide risk is increased within public safety due to the nature of the work, which regularly exposes individuals to high levels of trauma and stress. These repeated experiences can lead to cumulative trauma, where the emotional weight of each incident adds up over time, resulting in chronic stress and traumatic injuries.

First responders often excel at compartmentalizing their emotions, an essential skill that keeps first responders safe in the work they do. However, when psychological and emotional pain is compartmentalized and suppressed, it can have negative consequences. The need to belong, and the fear that they will be judged, or considered unfit for duty, or seen as a burden to their friends, family or colleagues, is enough to keep everything hidden. It is imperative that we rethink our approach to suicide prevention within the first responder community.

Innovative Strategies

Dr. Shauna Springer, chief psychologist for Stella, a leading authority for innovative trauma treatments, suggests an alternate approach – one specifically for first responders.

Dr. Springer's approach to suicide in the first responder community focuses on normalizing discussions about mental health to diminish the stigma often associated with these topics.

She advocates for "equalizing" trauma experiences, reminding first responders that they are not alone, and relaying the message that we are all resilient until we are not. Her framework encourages individuals to "ask" about each other’s well-being, highlighting the need for a strong connection, and fostering a culture where checking in becomes a regular practice. By introducing the concept of "encircling," she underscores the necessity of a supportive network that surrounds those in distress, cultivating a sense of belonging and safety. Finally, the principle of "holding" highlights the importance of holding the connection, to ensure that first responders feel valued and cared for, which ultimately contributes to a healthier and more resilient community.

With established wellness programs and greater recognition of trauma’s physiological and psychological impact on the body within the first responder communities, we have an opportunity to recognize where traditional response has failed and build a new approach. Addressing these issues requires collaboration and cultures that prioritize well-being. Through open discussions about the impacts of stress and trauma and promoting self-awareness, we can work toward reducing the stigma and ultimately lowering the risk of suicide within public safety.

If you or your loved one is experiencing thoughts of suicide and would like to talk about it, please consider the list of resources provided on our website. 

Learn, Improve, Protect: Boost Your Agency’s Performance with After-Action Review Training

An After-Action Review (AAR) is typically conducted following a critical incident, although it can also be completed on a more informal basis in the form of a debrief or hot wash following minor incidents or arrests. An AAR is conducted to allow responding officers to reflect on what happened, what did not work during the response and why, and how to improve weaknesses while building on what went well in order to sustain strengths.

Many law enforcement agencies use AARs and when done properly they can be an incredibly effective learning tool. The AAR can be very beneficial when administered as an open and honest exchange of ideas and observations among team members and when it is used to to convey a commitment to identifying solutions. It can also be useful for providing feedback to improve performance and to recognize a job well done.

Research Shows High-Performing Agencies Use AARs

The League of Minnesota Cities Insurance Trust (LMCIT) recently completed the second year of three-year a research study with Benchmark Analytics to utilize predictive analysis to identify key risk factors facing Trust member law enforcement agencies and to provide evidence-based recommendations for approaches to address these risks. One of the leading findings of the research addressed AARs. The research showed a strong correlation to a reduction in both liability and workers’ compensation claims for agencies that had established an extensive AAR process.    

LMCIT to Offer AAR Training

LMCIT is sponsoring training this October to assist our members in learning more about the importance of AARs and how to conduct them. In this half-day workshop for public safety professionals, participants will learn how to improve their agency’s response to incidents and promote first responder and community safety. 

By attending the workshop, you will gain an increased understanding of the importance of conducting both informal debriefs and formal AARs by instilling a culture of continuous learning. This low-cost training will be led by Jennifer Zeunik, former senior director of safety and justice programs at the National Policing Institute (NPI), and Rick Braziel, former chief of the Sacramento Police Department.

The training is available at two locations: Oct. 1 in St. Cloud and Oct. 2 in Cottage Grove. Learn more about the AAR training and register.

Additional Resources Available to Help Your Agency Develop an AAR Process

There are several resources available that can assist your agency in developing its own AAR process. The resources below also provide best-practice recommendations to maintain a professional and trusting environment, as the focus of any AAR process needs to be on learning and improvement, including individual performance and training along with a recognition and rewards program.   

• How to Conduct an After-Action Review (COPS/National Police Foundation)
• After-Action Review (International Association of Chiefs of Police) 
• Risk Management in Law Enforcement – Discussions on identifying and mitigating risk for officers, departments, and the public (U.S. Department of Justice)
• Planning for Critical Incident Responses and Model Policy (League of Minnesota Cities)
• Evidence-Based Practice Quick Start Guide: After-Action Reviews (League of Minnesota Cities) - contact me at the info below if you would like a copy

If you have any specific comments or questions or would like a copy of these resources — including the Quick Start Guide — emailed to you, contact me at tstille@lmc.org or (651) 215-4051.

In the meantime, stay safe!   

Tracy