CISA Ransomware Guide

On September 30, 2020, the Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing and Analysis Center released a joint Ransomware Guide, which is a customer centered, one-stop resource with best practices and ways to prevent, protect and/or respond to a ransomware attack.

Stop. Think. Connect. Cyber Threat Campaign

The STOP.THINK.CONNECT.™ Campaign is a national public awareness campaign aimed at increasing the understanding of cyber threats and empowering the American public to be safer and more secure online.

 

Cybersecurity in the Classroom

The DHS Cybersecurity Education Training Assistance Program (CETAP) equips K-12 teachers with cybersecurity curricula and education tools. This resource includes project-driven Curricula (e.g., lesson plans, assessments); programs (e.g., hands-on cybersecurity learning activities for middle-school and high-school students); and Student Resources for students, parents, and activity leaders looking to enhance students’ awareness of STEM, computer science, and cyber topics.

Cyber Threats to K-12 Remote Learning

Published in December 2020, this report by the Cybersecurity and Infrastructure Security Agency (CISA) details how cyber actors are targeting school computer systems, slowing access, and rendering the systems inaccessible to basic functions, including remote learning. In some instances, ransomware actors stole and threatened to leak confidential student data unless institutions paid a ransom.

CSAT – CIS Controls Self-Assessment Tool

The CIS Controls Self-Assessment Tool, or CIS CSAT, is a free web application that enables security leaders to track and prioritize their implementation of the CIS Controls. For each CIS Control and sub-control, CSAT helps organizations track its documentation, implementation, automation, and reporting.

CIS Controls V7.1 Implementation Groups

The CIS Controls Implementation Groups take a “horizontal” look across all of the CIS Controls and identify a set of Sub-Controls to provide a simple and accessible way to help organizations of different classes focus their security resources.

Reasonable Security Practices

The Learning Technology Center selected 43 security best practices that all districts should implement to comply with the Student Online Personal Protection Act. The practices align with CIS Controls, a globally recognized cybersecurity standard, and are vetted by Illinois school district technology leaders.