On September 30, 2020, the Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing and Analysis Center released a joint Ransomware Guide, which is a customer centered, one-stop resource with best practices and ways to prevent, protect and/or respond to a ransomware attack.
The STOP.THINK.CONNECT.™ Campaign is a national public awareness campaign aimed at increasing the understanding of cyber threats and empowering the American public to be safer and more secure online.
The DHS Cybersecurity Education Training Assistance Program (CETAP) equips K-12 teachers with cybersecurity curricula and education tools. This resource includes project-driven Curricula (e.g., lesson plans, assessments); programs (e.g., hands-on cybersecurity learning activities for middle-school and high-school students); and Student Resources for students, parents, and activity leaders looking to enhance students’ awareness of STEM, computer science, and cyber topics.
Published in December 2020, this report by the Cybersecurity and Infrastructure Security Agency (CISA) details how cyber actors are targeting school computer systems, slowing access, and rendering the systems inaccessible to basic functions, including remote learning. In some instances, ransomware actors stole and threatened to leak confidential student data unless institutions paid a ransom.
Recommendations for schools as they use videoconferencing apps developed by the Cybersecurity & Infrastructure Security Agency (CISA).
The CIS Controls Self-Assessment Tool, or CIS CSAT, is a free web application that enables security leaders to track and prioritize their implementation of the CIS Controls. For each CIS Control and sub-control, CSAT helps organizations track its documentation, implementation, automation, and reporting.
The CIS Controls Implementation Groups take a “horizontal” look across all of the CIS Controls and identify a set of Sub-Controls to provide a simple and accessible way to help organizations of different classes focus their security resources.
The Learning Technology Center selected 43 security best practices that all districts should implement to comply with the Student Online Personal Protection Act. The practices align with CIS Controls, a globally recognized cybersecurity standard, and are vetted by Illinois school district technology leaders.