Your district probably has emergency preparedness and cybersecurity protection programs. But are they up to date?
With rising international tensions, the nation is on higher alert for the possibility of cyberattacks. School districts may not be the primary target of these attacks, but no organization is immune. Your district probably has emergency preparedness and cybersecurity protection programs. But are they up to date? From an organizational perspective, when is the last time you revisited the following key areas to help prevent and respond to cyberattacks?
Incident response plan. As staff and systems change, incident response plans need to be updated on a regular cycle. Update contact information for employees, critical vendors/service providers, insurance providers and/or outside counsel. Determine the right way to reach people, whether that is by email, text message or another means. Make sure the method is practical enough to be used in an emergency. It’s not enough to say you have an incident response plan that’s shared on your network; people need to know where to find it during an emergency. Make versions available in multiple locations for out-of-band access such as physical-print, off-site, or cloud storage…
Communications. During a crisis, communications are critical. Effective communications take advance preparation and planning. As you think about your emergency preparedness, consider these questions: What communications can we prepare and have approved in advance? Who is authorized to make statements in the event of a cyber-attack? Is that person known to everyone? Is there a designated alternate? Do you have a strategy for communicating with your team if your main communication channel is down?
Training. From an organizational perspective, when is the last time you revisited your cybersecurity training programs? What types of techniques and topics are addressed in those trainings? What are the metrics you use to monitor the effectiveness of your protections? How do you communicate the latest cyber threats for awareness?
Your district’s IT administrators should carefully select topics to include in the training program. Important areas to cover include detecting spoofed/falsified e-mail senders, overly urgent messages, and external communications that include attachments, links or form fields.
Your central administrators are likely to be prime targets for cyber-attacks. They can set an example and raise awareness by sharing their experiences with teachers and staff. They can ask employees, “Have you ever received an email — purportedly from an administrator — requesting information, soliciting financial transactions or asking for organizational details?”
Program Lifecycle. As you pause to ensure that the tactical plans are in place and up-to-date, take a moment to review the overall cybersecurity program with a new perspective. As your technology landscape evolves over time, so do threats. Revisiting your district’s cyber strategy can help link protection and response capabilities so that you are better prepared when the world becomes more unpredictable.