Skip to main content
close search
site logo
Dive Brief

How can districts build a top-tier information security team?

Published April 26, 2018
Roger Riddell's headshot
Senior Editor
Getty

Dive Brief:

  • Maintaining information security in a school district can be an arduous task due to the wide array of stakeholders involved — ranging from faculty and staff to students — and the lack of knowledge they may possess on the topic, according to EdTech: Focus on K-12.
  • Lower pay can make it difficult for districts to attract skilled information security professionals, but district leaders can develop a long-term strategic vision that funds for training and development, includes state-of-the-art technology, and a provides a fulfilling work environment that appeals to mission-driven professionals.
  • In addition to competing with the private sector via workplace training and professional development programs, districts can also  empower information security team members through leadership by example, embrace learning from mistakes and provide open and transparent feedback.

Dive Insight:

On the cybersecurity front, many in K-12 could do well to look to their peers in higher education. While that sector still faces its fair share of information security challenges, most colleges and universities have the benefit of having more experience with these concerns than most K-12 schools and districts.

The most important lesson is that the end user is typically an organization's top cybersecurity threat. All it takes is one person falling prey to a malicious link or email attachment to compromise security. University of Dayton CIO Thomas Skill has worked to combat this with a campus-wide initiative that uses regular phishing tests; emails with updates, warnings and the latest security news; and incentives and prizes for people who complete certain actions. Such moves can be key in promoting greater cyber-awareness among students, faculty and staff.

This isn't something districts can afford to sleep on.

According to a September 2016 analysis of 20,000 organizations by security ratings firm BitSight, malware attacks against education outpaced attacks against those in government, healthcare, energy, retail and finance. Particularly popular are ransomware attacks, where hackers encrypt sensitive data and demand that schools or districts pay a ransom to regain control of the information.

Simply put, schools are a popular hacker target — and the attacks aren't lacking in success. South Carolina's Horry County Public Schools paid an $8,000 ransom to end an attack in June 2016 and, and research estimates last summer placed the total amount raked in by ransomware attacks over a two-year period around $25 million.​

Recommended Reading

Filed Under: Technology, K-12

Editors' picks

Company Announcements

View all | Post a press release
Wolf Trap Institute for Early Learning Through the Arts and Spoleto Festival USA Partner to Fo…
From Wolf Trap Foundation for the Performing Arts
December 12, 2024
UniqLearn Wins Prestigious 2024 Supes' Choice Award
From UniqLearn
December 17, 2024
Marketplace Leader Sandra Dainora Petersen Joins HopSkipDrive as Senior Vice President of Prod…
From HopSkipDrive
December 16, 2024
HopSkipDrive Announces Plans to Expand to Atlanta
From HopSkipDrive
December 10, 2024
Editors' picks
Latest in Technology
Industry Dive is an Informa TechTarget business.
© 2024 TechTarget, Inc. or its subsidiaries. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell
This website is owned and operated by Informa TechTarget, part of a global network that informs, influences and connects the world's technology buyers and sellers. All copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. TechTarget, Inc.'s registered office is 275 Grove St. Newton, MA 02466.