澳门跑狗论坛

Privacy & Security

It Takes an Entire District to Prevent a Cyberattack: 5 Tips

By Lauraine Langreo 鈥 February 15, 2023 3 min read
underground cyber security hologram with digital shield 3D rendering
  • Save to favorites
  • Print
Email Copy URL

K-12 district technology leaders know what steps they need to take in order to protect their network systems from cyberattacks.

They鈥檝e seen news report after news report about another district falling victim to a cyberattack. They know one day their district could be next. They鈥檝e implemented guidance from the federal Cybersecurity and Infrastructure Security Agency and other cybersecurity organizations about how to lessen their risks.

But one of the most vexing challenges, some district technology leaders emphasize, is getting the rest of the district鈥攁ll staff, parents, and students鈥攖o follow cybersecurity policies and best practices.

鈥淣ot to lessen or underestimate the technical things that are required, but so much of managing security is more about those human management things,鈥 said Rod Russeau, the director of technology and information services for Illinois鈥 Community High School District 99.

Patricia Brown, the director of technology for Missouri鈥檚 Ladue school district, agreed: 鈥淪ome may view security measures as burdensome and intrusive to their daily work processes, leading to a reluctance to implement them.鈥

The reality is that cybersecurity policies and best practices won鈥檛 reduce the risk of cyberattacks if no one is following them. Here are five tips from Russeau and Brown on how to get buy-in from everyone in the district:

1. Start with the leadership team

鈥淚t鈥檚 essential to get the leadership team on board with the cybersecurity policies,鈥 Brown said. 鈥淚f they are not committed to it, it will be challenging to get buy-in from others.鈥

Talk to the leadership team often about the importance of cybersecurity. Engage them early when creating mitigation plans. Explain the risks and potential consequences of a security breach and the importance of having strong policies and practices in place.

District technology leaders can provide plans and figure out the risks, but 鈥渓eadership is ultimately accountable for everything that happens in the school district,鈥 Rousseau said.

See Also

Hacker attack and data breach, information leak and cybersecurity concept.
iStock/Getty Images Plus

2. Get everyone involved in the process

Ensure that all district staff, educators, administrators, and even students, are involved in the development of the policies and best practices. Involving all stakeholders leads to policies that are practical, relevant, and that everyone feels they have had input into creating, Brown said.

For example, Russeau said tech leaders can go through an exercise with district staff 鈥渢o identify critical assets,鈥 which could 鈥渙pen the door鈥 for staff to think about other strategies that could be added to a district鈥檚 incident response plan.

3. Communicate in simple language and avoid cybersecurity technical jargon

When explaining the policies and best practices, make sure to use clear and simple language and avoid jargon, so that everyone can understand them, Brown said. District technology leaders should also explain the benefits of the policies, such as the protection of sensitive information. 鈥淭his can help build support for the policies,鈥 she added.

Although some policies 鈥渃an be annoying,鈥 it鈥檚 important to remind district staff, students, and parents that the policies and best practices are there to protect them and their data, Russeau said.

4. Provide training on how to prevent cyberattacks

Russeau and Brown underscored the importance of educating staff, students, and parents on the importance of cybersecurity and the new policies and best practices. Districts should also provide training on how to identify and prevent cyber threats.

One example would be conducting an email phishing awareness campaign regularly and providing resources to those who are not that successful at identifying phishing emails, Russeau said.

5. Enforce the policies consistently

Finally, it鈥檚 essential to enforce the policies consistently, they said.

鈥淚f there are no consequences for violating the policies, they will not be taken seriously,鈥 Brown said. 鈥淓nforcing the policies will help demonstrate the importance of cybersecurity and encourage everyone to follow the rules.鈥

When Russeau鈥檚 district sends out fake phishing emails as part of its cybersecurity awareness campaign, employees who click on those emails are prompted to participate in mini-training on cybersecurity best practices.

See Also

Illustration of an open laptop with a red envelope attached to a fishing hook.
iStock/Getty Images Plus

Events

Artificial Intelligence K-12 Essentials Forum Big AI Questions for Schools. How They Should Respond鈥
Join this free virtual event to unpack some of the big questions around the use of AI in K-12 education.
This content is provided by our sponsor. It is not written by and does not necessarily reflect the views of 澳门跑狗论坛's editorial staff.
Sponsor
School & District Management Webinar
Harnessing AI to Address Chronic Absenteeism in Schools
Learn how AI can help your district improve student attendance and boost academic outcomes.
Content provided by 
This content is provided by our sponsor. It is not written by and does not necessarily reflect the views of 澳门跑狗论坛's editorial staff.
Sponsor
Science Webinar
Spark Minds, Reignite Students & Teachers: STEM鈥檚 Role in Supporting Presence and Engagement
Is your district struggling with chronic absenteeism? Discover how STEM can reignite students' and teachers' passion for learning.
Content provided by 

EdWeek Top School Jobs

Teacher Jobs
Search over ten thousand teaching jobs nationwide 鈥 elementary, middle, high school and more.
Principal Jobs
Find hundreds of jobs for principals, assistant principals, and other school leadership roles.
Administrator Jobs
Over a thousand district-level jobs: superintendents, directors, more.
Support Staff Jobs
Search thousands of jobs, from paraprofessionals to counselors and more.

Read Next

Privacy & Security What Teachers Need to Know About Changes to Instagram Teen Accounts
The adjustments come as Meta faces multiple lawsuits from states and school districts.
4 min read
Close up photo of Black teen looking at Instagram photos on her cellphone.
Anastasia_Prish/Getty
Privacy & Security Download A Tip Sheet to Help Teachers Prevent and Respond to Doxxing
Teachers can be a target for malicious actors. Use this tip sheet to prevent and respond to doxxing.
1 min read
Image of digital safety against doxxing and privacy invasion.
Laura Baker/澳门跑狗论坛 via Canva
This content is provided by our sponsor. It is not written by and does not necessarily reflect the views of 澳门跑狗论坛's editorial staff.
Sponsor
Privacy & Security Quiz
Quiz Yourself: How Much Do You Know About Cybersecurity For Schools And Districts?
Answer 6 questions about actionable cybersecurity solutions.
Content provided by 
Privacy & Security What Schools Need to Know About These Federal Data-Privacy Bills
Congress is considering at least three data-privacy bills that could have big implications for schools.
5 min read
Photo illustration of a key on a digital background of zeros and ones.
E+