Executive Order 22-20 FAQ: responding to directives and reporting cyber-attacks
On August 30, 2022, Governor Tim Walz signed Executive Order 22-20, directing state entities with regulatory oversight of critical infrastructure providers to identify and focus resources to protect Minnesota’s critical infrastructure. It also directs state entities with regulatory oversight of critical infrastructure providers to aid those operators with performing risk assessments and prioritizing defenses to counter immediate cyber threats. Further, the order emphasizes the need to secure state government cyber defenses by directing state agencies to prioritize patching critical vulnerabilities, take additional steps to prepare and practice response to cyber-attacks, and identify additional opportunities to further state cybersecurity.
This Executive Order advances information-sharing with the Minnesota Fusion Center (MNFC) and Minnesota IT Services (MNIT) during critical cybersecurity events, and it provides instructions for state agencies to implement cybersecurity best practices.