Priority 1 – Deploy Multi-factor Authentication (MFA)

CISA in their January and August 2023 Bulletins again called out some of the most important ways that schools can protect themselves from cyber attacks. In both reports, CISA suggested that schools start their Cybersecurity journey by implementing six of the Highest-priority security measures.

Read more

Tech Tidbit – Thoughts About Passwords

Recently it was worldwide “change your password” day! I have a few thoughts. If you attended the CSI CyberSecurity event in December, you heard the NYS SED CISO get caught up in the incongruent password guidance between NYS and NIST CSF. Unfortunately, there was no breakthrough in this discussion, but NYS SED heard you that […]

Read more

Using CPGs in Real Life – Minimize Exposures to Common Attacks

Would you be comfortable giving your plumber the key to your house so he/she can come in at any time to fix anything they might feel is amiss? The answer is probably no. Did you know that when you give a vendor unfettered access to your network you are essentially doing the same thing? Similarly, […]

Read more

CSI Tech Talk I October 2023 – Recording Available

We live in interesting times and continue to face some very unique challenges to keep your school district safe and stable so teachers can teach, students can learn, and the staff behind the scenes can do all the important tasks that make the district function well.

Read more

CSI’s Tech Talk II October 2023 – Recording Available

We live in interesting times and continue to face some very unique challenges to keep your school district safe and stable so teachers can teach, students can learn, and the staff behind the scenes can do all the important tasks that make the district function well.

Read more

CSI Tech Talk I January 2023 – Recording Available

Tech Tidbits – Scott’s updates on security, updates, and industry news since we last got together. Harden your endpoints as part of your overall security plan – We talk about patching constantly. However, recent ransomware attack post-mortem analysis has shown that there are a number of free, and mostly easy endpoint configuration changes you can quickly make to […]

Read more

Tech Talk II January 2023 – Recording Available

Tech Talk Part II will be a special session on email. We will talk about the following: Reading email headers. Every time something bad comes into the district, there is invariably a question about where it came from and why it got in.

Read more