Cybersecurity Theory of Action: Year 2
Building a Security-Conscious Culture Through Training & Awareness
Our Core Theme
Empowering Our People to Be the First Line of Defense
Building on our technical foundations from Year 1, our focus shifts to the human element. This year is dedicated to equipping every staff member with the knowledge and tools to actively participate in protecting our digital environment, with a special emphasis on training, student data privacy, and streamlined application access.
The Three Pillars of Action
1. Employee Training & Awareness
Equipping all staff with the skills to recognize threats, protect sensitive information, and adhere to security policies through continuous learning and simulation.
Breakdown of topics covered in mandatory annual best practices workshops.
Interactive Learning
Click the button to generate a new scenario!
2. Student Data Privacy
Ensuring all staff understand and comply with data privacy regulations like FERPA and COPPA, and use district-approved tools to protect student information.
Digital Resource Vetting Process
1. Staff Request
New app or service proposed
↓
2. Tech Dept. Vetting
Technical & security review
↓
3. Privacy Compliance Check
FERPA/COPPA alignment
↓
Data Privacy Helper
Click the button to get a quick privacy tip!
3. Streamlined & Secure Access
Driving full adoption of ClassLink as the single, secure gateway to all digital resources, reducing password fatigue and enhancing security through SSO.
Quarterly goal for migrating applications to the ClassLink SSO platform.
Supporting the Mission: Process & Documentation
🗓️
Plan Refinement
Revisiting and updating the Incident Response and Disaster Recovery plans with the tech team to incorporate lessons learned and new procedures.
📚
Knowledge Base Creation
Developing simple, user-friendly "how-to" guides on key security topics like reporting phishing and using ClassLink effectively.