Cybersecurity and Infrastructure Security Agency recently released its steps for K-12 schools and districts to enhance cybersecurity.
CISA's Partnering to Safeguard K-12 Organizations from Cybersecurity Threats, announced in a Jan. 24 agency news release, was mandated by the K-12 Cybersecurity Act of 2021 and outlines steps for primary and secondary schools to improve cybersecurity defenses.
"We must ensure that our K-12 schools are better prepared to confront a complex threat environment," CISA Director Jen Easterly said in the news release. "As K-12 institutions employ technology to make education more accessible and effective, malicious cyber actors are hard at work trying to exploit vulnerabilities in these systems, threatening our nation's ability to educate our children."
The report is part of CISA's recommended defense against those malicious cyber actors, the release reported.
"Today's report serves as an initial step towards a stronger and more secure cyber future for our nation’s schools, with a focus on simple, prioritized actions schools can take to measurably reduce cyber risk," Easterly said in the release.
Steps for schools, as outlined in CISA's report, are aimed at building, operating and maintaining resilient cybersecurity programs. Recommendations include investing in impactful security measures and building a mature cybersecurity plan, recognizing and addressing resource constraints and focusing on collaboration sharing, according to the release.
"The release of today's report serves as an initial step towards a stronger and more secure cyber future for our nation's schools," the news release said. "CISA continues to engage with federal partners, including the U.S. Department of Education, and work closely with stakeholders to identify opportunities for progress and provide meaningful support that measurably reduces risk."
