Brady PieperSouth Dakota is seeking cybersecurity partners to assist with the safeguarding of local governments and officials from the rising threat of cyberattacks.
The state’s attorney general, in partnership with Dakota State University (DSU), is announcing a Request for Proposals (RFP) that will strengthen South Dakota’s cyber defenses. The RFP will invite qualified vendors to submit proposals that evaluate, optimize and reinforce local governments and municipalities’ cybersecurity systems, resulting in up to $7 million in state funding.
The RFP will work to support the DSU’s SecureSD: Cybersecurity for Municipalities and Counties Initiative, a joint coalition of cybersecurity professionals that seek to address security vulnerabilities in local governments.
The primary goal of the RFP will be to ensure that firewalls are properly configured, optimized and aligned with best practices, while eliminating rules that may potentially weaken cybersecurity.
Prospective vendors will be tasked to assess the range of firewall security components, including but not limited to base reviews, multi-factor authentication, VPN configuration, firmware updates and physical security of firewall systems.
Other crucial aspects of the review include evaluating change management procedures, password policies and remote access ports. Vendors will also examine the effectiveness of VPN usage to ensure local networks are reviewed, secured and documented.
In addition to reviewing the current configuration, vendors will be asked to identify any areas for improvement and offer recommendations for enhancing security. This may include suggestions for configuration changes, firmware updates and potential cybersecurity additions, though the final decision on any changes rests with the respective entity.
As part of the RFP’s deliverables, vendors will be required to provide a detailed report that encompasses findings, offer recommendations and estimate the costs to remediate any issues. Furthermore, vendors will be expected to map their reviews to two NIST cybersecurity frameworks – NIST 800-53 and NIST CSF 2.0 – to ensure the reviews align with recognized national standards.
All proposals to the RFP must be submitted to DSU’s Research & Economic Development Office online through the Central Bid Exchange by Feb. 28 to be considered.
Concluding the RFP period, DSU officials will evaluate companies and their proposals on a variety of criteria, including but not limited to, vendor’s evaluation team, meeting terms and conditions, qualifications, familiarity, techniques and previous performances.
Considering the size of South Dakota, the scope of the project could cover multiple entities and locations, with several vendors expected to be awarded contracts.
The Attorney General’s Office and Dakota State anticipate announcing these awards on March 14. Interested entities may find more information and resources on the initiative here.
Photo by Tima Miroshnichenko
