Resources

  This week I’d like to talk a little bit about the NIST Category – Recover. According to NIST, the Recover Category “identifies appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity incident.

In last week’s email, we talked about the third NIST Cybersecurity Framework category – Detect. This week we will be discussing the fourth category – Respond. As with Protect, the general idea of Respond seems pretty clear-cut.

In last week’s email, we talked about the second NIST Cybersecurity Framework category – Protect. This week we will be discussing the third category – Detect. Detection seems like it should be pretty straightforward.

In last week’s email, we talked about the first NIST Cybersecurity Framework category – Identify. This week we will be discussing the second category – Protect. The idea of protecting yourself and your network is pretty straightforward general concept.

    In last week’s email, we talked about what the NIST Cybersecurity Framework was, how it would help your district manage its Cyber Risk, and its alignment with Ed Law 2-d. Just as a reminder, there are five high-level categories that help organize the NIST CSF: IDENTIFY PROTECT DETECT RESPOND RECOVER Today we will […]

  Your district is faced with ever-increasing threats, pressures, and regulations. The list is endless. K-12 Cyberattacks continue to increase with devastating consequences. The requirements of Ed Law 2-d must be addressed. The Cyber insurance industry is running scared and requiring ever-increasing documentation and proof you are even “insurance worthy”. It is completely crazy.

I learned to drive “on the wrong side of the road” on a Monday morning in downtown London.   I hit my first object in about 50 feet when I ran over the cross beam of a crowd fence and it bounced up and tapped my car.   It was scary, but I eventually got to the […]

Late in the afternoon on a Friday, I created a bit of a scare for those of you who are part of our Paladin Sentinel monitoring system.  I was doing my due diligence removing a monitoring policy we experimented with after our last major system upgrade, but didn’t provide any value to us or you.

We have recently been approached by many school districts to talk to their district office staff and in some instances their faculty about phishing and security as it relates to money and personally identifiable information (PII).  These have been in the form of either special in-service training for district office/business office staff or as part […]

If you subscribe to our Paladin Sentinel monitoring service, hopefully, you know that either myself or one of our technical staff actively sweeps through the monitoring consoles sometime between 6 am to 7 am with the goal of identifying any major issues such as site, building or device down before 7 am.