CybersecurityIT Industry

Guest Post: Security Insights from an IT Expert in the EdTech Industry

By December 8, 2017 46 Comments
Guest Post - Security in EdTech

What does your organization have that’s of value?

  • Banks and ATMs have cash.
  • Department stores have goods.
  • Grocery stores have food stuff
IT Security in EdTech

What does your organization have that’s of value?

Old desks? Those are kind of bulky and hard to just run off down the street with. What about those 10-year old textbooks? Good luck selling those on Amazon for $.25. And like desks, textbooks are typically also difficult to run off with. There is something that schools have that’s built up in bits and bytes, 1s and 0s that has a great deal of value: student information.

Unlike a missing spot on a grocery store shelf, if someone were to steal a school’s student data, no one would know right away and no one could be stopped literally running down the road with it. The thieves may never be detected until they are the online equivalent of miles away from a student information system. While schools don’t have millions of dollars sitting in a back vault, they have gigabytes of value stored within their student information system.

There are many estimations of what student data is worth on the dark web. For the purposes of this piece, I’m not going to throw numbers out there because I’m unsure of the accuracy of any one report. What I do know without giving a dollar amount, as an IT expert in the education industry, is that student data is worth enough to steal from school districts.

Why would anyone steal student data from kindergarteners all the way to college graduates? What are cybercriminals doing with the data? Here’s a small sample of what they could be doing with student data: Medicare fraud, applying for credit cards, or other forms of identity fraud.

What makes it even more dangerous is that few people think to run credit checks and identity fraud checks on their children or school-age children. It’s only when the student is trying to apply for a financial product in the future that they notice what could be years of fraud involving their identity. Leading to devastating effects on those students down the line and throughout the rest of their life.

A few suggestions on how to combat your student data from being exploited:

1. Be a Data Gatekeeper

Take your responsibility as a gatekeeper to student data very seriously. When allowing access to any student information, only give staff members or contractors the access they need and no more. This is called the principle of least privilege. This is not about holding information back or a power play. Simply put, it’s about only giving wide access to people who absolutely need it to complete their jobs, such as the director of technology or a database manager. The more people who have broad access, the more potential paths nefarious people have into accessing all (or much) of your student information.

kindergarten building

And no IT leaders, your personal account shouldn’t have domain admin rights.

2. Updates, updates, updates…

Aren’t updates a drag? If you use Windows 10, you no doubt are sick of the “perpetual beta” mindset of Microsoft that has led to many updates for the operating system. Is it a pain? Yup! Do you need to do it? Absolutely! Updates are there for a reason: to protect end users from vulnerabilities that have been found and exploited. IT staff, keep your servers updated. Run firmware updates on switches, firewalls and all your major pieces of infrastructure. Be diligent. You can’t afford not to be.

3. Teach your people well

Teacher in classroom

Get in front of the people in your organization and talk about how important it is that they take care of their credentials. Help them understand what a phishing message looks like and why not to click on it.

In my current district, we have done awareness sessions on how phishing works. Then, we followed it up with campaigns with our own internally created phishing emails. The results weren’t great since many people still clicked on our fake phishing emails. But, every click that happened during these campaigns was another teachable moment to help people understand these concepts. Plus, maybe they will be wiser when a REAL phishing email crosses their inbox.

People are trusting. They are trusting to a fault and bad actors know that and try to exploit the good nature of people every day.

4. Get over it

You can’t and won’t be able to stop everything, just like you can’t guarantee everything on your network will work all of the time. It’s not that you don’t strive for that 0 downtime, or fight like hell every day to keep your network safe. That’s a given.

In IT, you mitigate risk and work to plan for the day you hope will never come. That’s the last piece of advice.

My colleague Ryan Cloutier from Minnesota likes to say “your data breach is coming…are you prepared for it?” While you’re doing all the work that needs to be done to strengthen and maintain the integrity of your network, make sure you have a  plan in place for the instance when data is leaked or information is exposed. It’s not fun to think about, but it’s part of our roll. Be prepared for a disaster recovery situation. Be ready, because when it comes, your actions after the incident will help to limit exposure and provide transparency to those impacted.

About the Author:

Nathan Mielke has worked in ed tech for a dozen years. His experiences include K-12 libraries, desktop/network support, instructional technology coaching, assessment coordination and most recently as a technology director for a 1:1 union high school district with over 1400 students. He specializes in building reliable, efficient systems to support student learning and school operations. He shares his insights and expertise in a variety of publications such as CoSn, ASCD, and his blog, Solution Agnostic. Nathan is a current StormWind Studios student and uses this training to be an even better leader in the K-12 educational technology industry.

Nathan Mielke

Want to become a more efficient IT team with Agile Methodology? Learn how to increase your organizational efficiency in less than an hour with StormWind Senior Instructor Ashley Hunt Quickcast on December 13th!

Join the discussion 46 Comments

  • Linh says:

    It is best to take component in a contest for among the most effective blogs on the net. I will advise this site!

  • Hello there, I am really excited I found your website, I really encountered you by mistake, while I was browsing on Aol for stream movies. Nonetheless I am here right now and would simply like to say cheers for a great write-up and the all-round entertaining blog (I too love the theme), I don’t have time to look over it all at the moment yet I have book-marked it and also included the RSS feeds, so whenever I have the time I will be returning to look over more. Make sure you do maintain the wonderful job.

  • You’re absolutely correct. I liked reading through this info and I will come back for more as quickly as possible. Our website is on the subject of more followers on instagram, you might have a look if you are still interested in this.

  • I was discussing with a buddy of mine about this article and about latest ios jailbreak as well. I do think you made a few good points in this case, we are looking forward to read more material from you.

  • Hello, what do you think concerning commercial real estate? Extremely fascinating subject, isn’t it?

  • Hello there, what do you feel with regards to forex robot? Very cool issue, right?

  • Having your data secured is whatis must nowadays for any organization as now many of the business is done with the help of the data so it was quite helpful from every point of view. Thanks for sharing the details.

  • Hello there could you tell me which blogging platform you are using? I’m looking to start out my personal site on mumbai packers and movers in the near future though I am having difficulties choosing.

  • There are certainly great upgrades on the structure of the site, I certainly like this. My website is dealing with how to watch free movies online and presently there are lots of things to be done, I am still a rookie in website design. Take good care!

  • Al Hadi AC Refrigration and Repairing is committed to giving your ACs a new lease of life. We have a team of experienced professionals which has serviced more than a 1000 units, much to the satisfaction of our clients. The effort at Al Hadi has always been to service a call in the shortest span of time and to close it with a happy client. The referrals we get is a testimony to our work. Try our services today!

  • Darwin Horan says:

    Greetings, I am really glad I discovered this website, I actually encountered you by error, when I was browsing on Google for investing in real estate. Regardless I’m here now and would simply like to say cheers for a great write-up and the all round entertaining blog (I too enjoy the theme/design), I do not have enough time to look over it all at the moment yet I have book-marked it and also included the RSS feed, so once I have the time I’ll be returning to read a lot more. Please do maintain the excellent work.

  • Hello there, what do you think around breathing methods? Very trendy subject, huh?

  • She never live on her words, after getting full payment she will change her word and commitment, she wants only money and nothing else. God in subse jaise Doctors se hame bachaye

  • Dollar Store says:

    Hello just wanted to come by. The text in your content seem to be running off the screen in Firefox. I’m not sure if this is a format issue or something to do with browser compatibility but I figured I’d comment to let you know. The style and design look great though! Hope you get the issue resolved soon. Kudos!!

  • Healthy Sex says:

    There is terrific improvements on the style of the page, I truly love that! My website is on the subject of diet and presently there are lots of things to be done, I’m still a starter in website design. Thanks!

  • I am really intrigued to understand which site system you’re using? I’m having a few small security challenges with my most recent website related to sports stories so I would like to find something much more secure. Are there any suggestions?

  • You are entirely doing a great work and I totally enjoy your post. Thanks man keep it as like right now.

  • ISSAM says:

    Well I like what you said,As a junior i want some suggestion. Check my video.Thanks http://ceesty.com/wmofVm

  • Hi there can you tell me which blog platform you’re making use of? I’m planning to start my blog on new home designs soon although I’m having a tough time making a decision.

  • Timothyst says:

    After I initially commented I clicked the -Notify me when new feedback are added- checkbox and now every time a remark is added I get four emails with the same comment. Is there any manner you may remove me from that service? Thanks! http://hellowh985mm.com

  • Are you tired of your ac repair in Dubai? Are you looking for Certified Professionals to carry out your ac repair with improved facilities and in an expert way?. Hot and humid conditions are not easy to tolerate, especially when you are not used to them. But, thanks to the air conditioners – living in such extreme settings can also become a pleasant experience, and more so if you are in Dubai.

  • Timothyst says:

    I’m usually to running a blog and i actually admire your content. The article has really peaks my interest. I am going to bookmark your site and preserve checking for brand spanking new information. http://hellowh985mm.com

  • Timothyst says:

    After study just a few of the weblog posts in your web site now, and I truly like your way of blogging. I bookmarked it to my bookmark website list and might be checking again soon. Pls check out my web site as nicely and let me know what you think. http://hellowh985mm.com

  • I was talking to a friend of mine on this info and also regarding carpet cleaning deals as well. I do think you made a few good points in this case, we’re also looking forward to find out more information from you.

  • Timothyst says:

    It is best to participate in a contest for the most effective blogs on the web. I will advocate this website! http://hellowh985mm.com

  • BOBI says:

    Quality blog brings quality monitoring and changes mind of intelects.A small donation you may be interested. http://corneey.com/wm6Zo9

  • LANCE says:

    Quality blog brings quality monitoring and changes mind of intelects.A small donation you may be interested. http://corneey.com/wm6Zo9

  • I am really enjoying the design of your blog. Do you face any kind of internet browser interface issues? A few of the blog audience have complained regarding my microsoft excel formulas website not working correctly in Internet Explorer yet seems fantastic in Firefox. Are there any kind of advice to assist correct that situation?

  • Howdy I’m really excited I discovered your website, I really found you by mistake, when I was browsing on Aol for bitcoin price chart. Anyways I’m here right now and would simply like to say thank you for a fantastic write-up and the all-round entertaining website (I furthermore enjoy the theme), I do not have the time to read it completely at the moment but I have bookmarked it and moreover included the RSS feeds, so once I have the time I will be back to go through more. Make sure you do maintain the superb work.

  • video wall says:

    Hi there, you’re absolutely correct. I frequently read your articles closely. I am furthermore looking into HDTV tuners, you might discuss this sometimes. I’ll be back soon.

  • i liked your blog.great info.thanks for sharing.

  • Hi! This is my very first reply on your site so I simply wanted to say a fast hello and say I genuinely enjoy reading through your posts. Can you recommend any other sites which deal with Ethereum to USD? I am also very keen on that thing! Thanks!

  • I’m really curious to understand which website system you’re working with? I am experiencing a few slight protection challenges with the latest blog related to where to buy Ethereum and I’d love to find one thing more secure. Are there any solutions?

  • Hello there, I’m really thrilled I found your site, I really found you by accident, when I was researching on Google for traffic fines. Nonetheless I am here now and would really love to say thanks for a incredible posting and the all-round thrilling blog (I likewise love the theme), I do not have sufficient time to read it all at the minute though I have bookmarked it and also added the RSS feeds, so when I have the time I’ll be back to browse much more. Please do continue the fantastic work.

  • It was actually amazing reading this info and I believe you’re 100 correct. Tell me if you are thinking of speeding fines, that’s my primary expertise. I really hope to hear from you soon enough, take care!

  • There are actually amazing modifications on the style of your page, I certainly like it. My site is dealing with test credit card numbers and certainly, there are a lot of stuff to be done, I am currently a starter in webpage design. Take care!

  • ANPC is a free nation for and by the living men and women of the earth. This Private Nation is a grassroots association based out of Indonesia having its own International Charter, Peace Treaty, Constitution, Rules of conduct and has adopted the Declaration of Human Rights. These Treaties have been Registered by International Notice to the Hague and World Court as well as other agencies worldwide. The entire goal and mission of ANPC is WORLD PEACE and freedom for all the nationals of the world, focusing on a peaceful gathering together of all tribes and nations. Our living men and women are to live as Peaceful Inhabitants on the land, striving always to create a better world today and for future generations.

  • This blog is doing a great job.thanks

  • If you look at this blog carefully then very important information is available inside it.

  • Thank you hearty.To get so important information

  • The server by which this blog opens up has proven to be very effective

  • I want to keep this blog safe with you.Because I keep sharing comment with this blog

  • Lettuce Post says:

    The next time I read a blog post from here I’m going to do so while eating some deep fried goodies.

  • These two better settle their score now before everything ends up burnt!

  • Jerlene says:

    Girls just want to have fun 😉

Leave a Reply