SecurED Schools

SecurED Schools

Illinois’ K12 Data Privacy and Cybersecurity Summit

A two-day professional development event focused on data privacy and cybersecurity for K-12 Administrators, Technology Leaders, and IT Staff.

The Learning Technology Center is hosting SecurED Schools (formerly K12 Data and Security Summit). Technology and education leaders will learn about data privacy and cybersecurity requirements, policies, and best-practice strategies during engaging presentations and hands-on activities. Workshops and sessions focus on three main strands: prevention and planning; intervention and response; and policies, regulations, and leadership.

CONFERENCE DETAILS

Locations

January 14-15, 2020
NIU Naperville
1120 E. Diehl Rd, Naperville, IL 60563

January 16-17, 2020
IEA Professional Development Center
3440 Liberty Drive, Springfield, IL 62704

View Parking Instructions

Structure

One day of the conference is dedicated to full-day workshops and the other day is focused on 60-minute breakout sessions. Attendees may register for one or both days. The workshop day occurs on January 14 at the Naperville location and January 17 at the Springfield location. The breakout sessions occur on January 15 at the Naperville location and January 16 at the Springfield location.

Attendees

Workshops and sessions at SecurED Schools will be beneficial to technology leaders (CTOs, Technology Directors, IT Managers), IT staff (network engineers, IT support staff), and district and building administrators, as well as all staff who are responsible for collecting, maintaining, reporting, certifying, and/or protecting and securing student data and the educational environment.

Download SecurED Schools Flyer

Conference Fees

One-Day, Pre-Workshops (January 14 or 17): $50
One-Day, Conference (January 15 or 16): $35
Two-day Pass: $85

Please note that all Naperville workshops are sold out. There is still availability in the General Conference day at Naperville and Springfield, as well as both Springfield workshops.

Workshops and Breakout Sessions

  • Naperville, Day 1
  • Naperville, Day 2
  • Springfield, Day 1
  • Springfield, Day 2

January 14

Location
NIU Naperville
1120 E. Diehl Rd, Naperville, IL 60563

Check-in/Breakfast
Breakfast is at 8:00 AM. Workshops start at 8:30.

Note that attendees must register for each day they want to attend.

PD Hours
Attendees receive 6 PD Hours

Meals
Breakfast, lunch, and snacks are provided.

Creating a Cybersecurity Plan from the Ground Up // 8:30 AM - 3:30 PM

Ben Bayle, Dekalb 428
Ben Yochem, Dekalb 428
Marco Robles, Dekalb 428

SOLD OUT – All school districts — large and small, urban and rural — need a cybersecurity plan. Participants will take a deep dive into the elements of cybersecurity plan, gaining exposure to three leading frameworks: Nationwide Cybersecurity Review (NCSR), the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF), and the Center for Internet Security (CIS) Top 20. An emphasis will be placed on strategies that prevent 90% of vulnerabilities. During the workshop, attendees will complete the NCSR and NIST assessments and then align the results to the CIS Top 20 in order to identify areas of growth. Collaboration and networking with other administrative and technology leaders will play an integral role in the day’s activities.

Development of a Data Privacy Plan // 8:30 AM - 3:30 PM

Chris Wherley, Learning Technology Center
Erich Grauke, Illinois State Board of Education
Sean Cottrell, PTAC/US Department of Education

SOLD OUT – Superintendents, Building Administrators, and Technology Leaders play a critical role in the district’s Data Privacy Plan. With recent passage of Public Act 101-0516 in August, which becomes effective on July 1, 2021, districts are required to have a Data Privacy Plan. This workshop will provide strategies, tools, and resources to develop your district’s plan. Collaboration and networking with other administrative and technology leaders will play an integral role in the day’s activities.

 

January 15

Location
NIU Naperville
1120 E. Diehl Rd, Naperville, IL 60563

Check-in/Breakfast
Check-in opens at 8:00. Breakfast is available from 8:00 – 8:45. Event starts at 8:45.

Note that attendees must register for each day they want to attend.

PD Hours
Attendees receive 5.5 PD Hours

Meals
Breakfast, lunch, and snacks are provided.

Welcome // 8:45 - 8:55 AM

Tim McIlvain, Learning Technology Center

Data Sharing and FERPA // 9:00 - 9:50 AM

Sean Cottrell, PTAC/US Department of Education

Learn foundational information about the 2012 FERPA regulation changes as they relate to sharing of FERPA-protected data, and review of the data sharing best practices and requirements for complying with FERPA.

 

Cybersecurity and Data Privacy in a School Setting // 9:00 - 9:50 AM

Gerry Mattix-Wand, East Alton-Wood River H.S.

Explore cybersecurity and data privacy procedures in a school setting including disaster recovery and the future implementation of the Albert appliance with ICN/DoIT.

STUDENT ONLINE PERSONAL PRIVACY ACT (SOPPA) // 10:00 - 10:50 AM

Erich Grauke, Illinois State Board of Education

Receive updates, next steps, and strategies for implementing recent changes to the Student Online Personal Privacy Act that will go into effect on July 1, 2021.

School Safety: Free School and Cyber Information Sharing Program and Resources // 11:00 - 11:50 AM

Mia Ray, Statewide Terrorism & Intelligence Center

This presentation will reflect on current threats and trends that could affect school and cyber safety, along with lessons learned from school shootings incidents. Attention will be drawn to resources and ideas to help mitigate these issues. During this presentation, there will also be an opportunity to learn about the free School Safety Information Sharing Program and the free Cyber Security Program, which aids in safety through information sharing from local, state, and federal agencies with Illinois schools. View more information and resources.

Lens on Security–Risk Management // 11:00 - 11:50 AM

Presenters: Simon Weller, Senior Director of Technology at ENA–Monica Cougan, Product Marketing Manager at ENA

Risk management. Data privacy. Cybersecurity. These are three critical areas that need to be addressed in any K-12 security strategy. Join this interactive session to learn how different districts are tackling these very important issues. From providing training and professional development to deploying proactive cybersecurity technologies, education leaders from across the nation are taking a stand against cyberthreats. Attendees will leave with best practices, tips, and resources they can use to strengthen their security posture.

Vulnerability Scanning with OpenVAS // 11:00 - 11:50 AM

Eric Tamez, Bourbonnais Elementary School District

Attendees will explore the utilization of OpenVAS for vulnerability scanning. Users will become familiar with the process of installing and configuring OpenVAS. Attendees will also discuss how to research vulnerabilities and prioritize them in a manner that will effectively mitigate threats. This is a hands-on technical session.

Data Security // 1:10 - 2:00 PM

Sean Cottrell, PTAC/US Department of Education

Training on current data security best practices for education data systems, including user privacy and security awareness, privacy and security program development / implementation, threat modeling, and attacker methodology.

Preventing Business Email Compromise // 1:10 - 2:00 PM

Bill Gogel, Brown Smith Wallace LLP

According to the FBI’s 2018 Internet Crime Report, Business Email Compromise (BEC) caused the greatest dollar losses of all reported internet crimes. Total losses from BEC have more than doubled since 2017 to over $1.2 billion. In this session, learn if your institution measures up to best practices.

Introduction to Wireshark // 1:10 - 2:00 PM

Eric Tamez, Bourbonnais Elementary School District

Attendees will be introduced to Wireshark, a network traffic analysis tool. During this introductory session users will learn what Wireshark is and how to leverage it to effectively manage and secure their networks. This is a hands-on technical session.

Cyber Risk Management with Consideration to Data Protection // 2:10 - 3:00

Arvin Verma, InfraGard

A discussion around best practices of cybersecurity risk management, technical controls, and considerations to data privacy and data protection as well as discussion points around suppliers/third parties.

You’re a Goldmine for Hackers-Are You Prepared? // 2:10 - 3:00

Simon Weller, Senior Director of Technology at ENA

The New York Times published an article this past summer declaring school districts a primary target for hackers. According to the report, districts are particularly enticing as targets “because they hold troves of private data and often lack the resources to fend off intruders.” With ransomware and other acts of cyber villainy on the rise, it’s critical that districts take the necessary steps to protect their networks and valuable student data. Discover new trips and techniques hackers are using to bring districts to their knees and strategies education communities should consider implementing to ensure their data remains intact, accessible, and secure.

Q&A Wrap-Up // 3:00 - 3:30

Chris Wherley, Learning Technology Center

The Learning Technology Center, along with other presenters, will facilitate a Q&A session to answer questions and provide next steps.

January 16

Location
IEA Professional Development Center
3440 Liberty Drive, Springfield, IL 62704

Check-in/Breakfast
Check-in opens at 8:00. Breakfast is available from 8:00 – 8:45. Event starts at 8:45.

Note that attendees must register for each day they want to attend.

PD Hours
Attendees receive 5.5 PD Hours

Meals
Breakfast, lunch, and snacks are provided.

Welcome // 8:45 - 8:55 AM

Tim McIlvain, Learning Technology Center

Data Sharing and FERPA // 9:00 - 9:50 AM

Sean Cottrell, PTAC/US Department of Education

Learn foundational information about the 2012 FERPA regulation changes as they relate to sharing of FERPA-protected data, and review of the data sharing best practices and requirements for complying with FERPA.

 

The Future of SIEM in Education // 9:00 - 9:50 AM

Colby Jennings, Synapsis, Inc.

Attendees will learn the future of SIEM in education. Including incident management, incident response, fast detection, advance threat detection, and pin point infection source. This presentation with teach attendees how they aggregate data from multiple systems and analyze that data to catch abnormal behavior or potential cyber attacks. Attendees will learn how to develop good processes as well as develop maturity in their security operations.

Understanding the Cyber Kill Chain // 9:00 - 9:50 AM

Ben Story, PackIT Forwarding

Accident investigators often find that a complex chain of events leads up to a catastrophic failure. If any one of those events doesn’t happen, the chain would be broken and the ultimate event would not occur. Cybersecurity investigators use the same concept with the Cyber Kill Chain. Each step in the chain must be completed for an attack to be successful. Understanding the Cyber Kill Chain allows the good guys to better combat attackers. This is a technical session.

STUDENT ONLINE PERSONAL PRIVACY ACT (SOPPA) // 10:00 - 10:50 AM

Erich Grauke, Illinois State Board of Education

Receive updates, next steps, and strategies for implementing recent changes to the Student Online Personal Privacy Act that will go into effect on July 1, 2021.

School Safety: Free School and Cyber Information Sharing Program and Resources // 11:00 - 11:50 AM

Mia Ray, Statewide Terrorism & Intelligence Center

This presentation will reflect on current threats and trends that could affect school and cyber safety, along with lessons learned from school shootings incidents. Attention will be drawn to resources and ideas to help mitigate these issues. During this presentation, there will also be an opportunity to learn about the free School Safety Information Sharing Program and the free Cyber Security Program, which aids in safety through information sharing from local, state, and federal agencies with Illinois schools. View more information and resources.

Vulnerability Scanning with OpenVAS // 11:00 - 11:50 AM

Eric Tamez, Bourbonnais Elementary School District

Attendees will explore the utilization of OpenVAS for vulnerability scanning. Users will become familiar with the process of installing and configuring OpenVAS. Attendees will also discuss how to research vulnerabilities and prioritize them in a manner that will effectively mitigate threats. This is a hands-on technical session.

Cybersecurity and Data Privacy in a School Setting // 1:10 - 2:00 PM

Gerry Mattix-Wand, East Alton-Wood River H.S.

Explore cybersecurity and data privacy procedures in a school setting including disaster recovery and the future implementation of the Albert appliance with ICN/DoIT.

Free Penetration Testing // 1:10 - 2:00 PM

Michael Springer, Brown Smith Wallace LLP

Learn the top 5 way that districts are exposed during penetration testing.

Introduction to Wireshark // 1:10 - 2:00 PM

Eric Tamez, Bourbonnais Elementary School District

Attendees will be introduced to Wireshark, a network traffic analysis tool. During this introductory session users will learn what Wireshark is and how to leverage it to effectively manage and secure their networks. This is a hands-on technical session.

Data Security // 2:10 - 3:00 PM

Sean Cottrell, PTAC/US Department of Education

Training on current data security best practices for education data systems, including user privacy and security awareness, privacy and security program development / implementation, threat modeling, and attacker methodology.

Ransomware: Prevention and Mitigation // 2:10 - 3:00 PM

Ben Story, PackITForwarding.com

Schools are increasingly the victims of ransomware attacks. Prevention and mitigation are two critical components of addressing ransomware, and attendees will learn strategies and tools like offline backups and other segmentations that can help an organization recover without having to rebuild or pay. This is a technical session.

Preventing Business Email Compromise // 2:10 - 3:00 PM

Bill Gogel, Brown Smith Wallace LLP

According to the FBI’s 2018 Internet Crime Report, Business Email Compromise (BEC) caused the greatest dollar losses of all reported internet crimes. Total losses from BEC have more than doubled since 2017 to over $1.2 billion. In this session, learn if your institution measures up to best practices.

Q&A Wrap-Up // 3:00 - 3:30

Chris Wherley, Learning Technology Center

The Learning Technology Center, along with other presenters, will facilitate a Q&A session to answer questions and provide next steps.

January 17

Location
IEA Professional Development Center
3440 Liberty Drive, Springfield, IL 62704

Check-in/Breakfast
Breakfast is at 8:00 AM. Workshops start at 8:30.

Note that attendees must register for each day they want to attend.

PD Hours
Attendees receive 6 PD Hours

Meals
Breakfast, lunch, and snacks are provided.

Creating a Cybersecurity Plan from the Ground Up // 8:30 AM - 3:30 PM

Ben Bayle, Dekalb 428
Ben Yochem, Dekalb 428
Marco Robles, Dekalb 428

SOLD OUT – All school districts — large and small, urban and rural — need a cybersecurity plan. Participants will take a deep dive into the elements of cybersecurity plan, gaining exposure to three leading frameworks: Nationwide Cybersecurity Review (NCSR), the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF), and the Center for Internet Security (CIS) Top 20. An emphasis will be placed on strategies that prevent 90% of vulnerabilities. During the workshop, attendees will complete the NCSR and NIST assessments and then align the results to the CIS Top 20 in order to identify areas of growth. Collaboration and networking with other administrative and technology leaders will play an integral role in the day’s activities.

Development of a Data Privacy Plan // 8:30 AM - 3:30 PM

Chris Wherley, Learning Technology Center
Erich Grauke, Illinois State Board of Education
Sean Cottrell, PTAC/US Department of Education

Superintendents, Building Administrators, and Technology Leaders play a critical role in the district’s Data Privacy Plan. With recent passage of Public Act 101-0516 in August, which becomes effective on July 1, 2021, districts are required to have a Data Privacy Plan. This workshop will provide strategies, tools, and resources to develop your district’s plan. Collaboration and networking with other administrative and technology leaders will play an integral role in the day’s activities.

 

Frequently Asked questions

  • When will I pay?

    The Learning Technology Center will send an invoice to the billing address listed on the registration form after the event occurs. The Learning Technology Center only accepts checks as payment.

    Please make checks out to Learning Technology Center. Send checks to Learning Technology Center, 3358 Big Pine Trail, Champaign, IL 61822.

  • What if I register and need to cancel?

    If you must cancel for any reason you must notify us in writing at least 5 days before the conference. Cancellations within 5 days of the event are non-refundable.

  • When will this be held next year?

    Future dates will be posted by March, 2020.