Tim Bandos, VP of Cybersecurity at Digital Guardian

The coronavirus pandemic has caused unprecedented disruption across a wide range of industries, but nowhere more so than the education sector. With many schools and university campuses shut for indefinite periods of time, teachers have had to rely on online teaching methods such as emails, videoconferencing and collaboration tools, in order to minimise disruption to their students’ learning.

However, with a significant number of educational institutions ill prepared and inexperienced in such remote working practices, they’ve quickly become the target for criminals and hackers looking to infiltrate their networks and steal the wealth of sensitive personal data contained within them. In order to combat this, these institutions must ensure they’re doing their utmost to follow IT security best practice wherever possible.

Below are five top ways of doing so, ranging from ‘simple but effective’, to the latest technology-based solutions that can help detect and prevent a huge number of attempted cyber-attacks and keep sensitive data protected.

1)     Conduct regular cyber-security training for all faculty members

It’s much easier to spot an attempted cyber-attack if you know what to look for, which is why regular cyber security training is essential.  Many cyber-attacks begin with social engineering and/or phishing emails, and with the volume of email traffic between teachers and students exponentially higher at the moment, it could be much easier for someone to carelessly click on a compromised link or attachment. Not only is regular training an extremely cost effective way to boost cyber security and data protection, it also helps keep employees up to date on the latest attack methods, which is key to staying one step ahead of attackers.

2)     Ensure all staff are using unique passwords for each online account

Re-using the same old passwords/credentials (or slightly modified versions) across different accounts is always a major security risk. Should an attacker manage to get hold of one set of credentials (e.g. a teacher’s Zoom login) they’ll quickly attempt to use them to access multiple other accounts (such as cloud storage drives, Windows credentials, etc.), which can lead to a more serious breach that’s much harder to contain. Thankfully, a small change in staff behaviour, combined with regular password expiry protocols, can quickly mitigate this threat. Good password discipline is something that should be covered as part of regular security training to keep it top of mind for everyone.

3)     Ensure operating systems and software are kept up to date on all IT equipment

This is a tip you’ll hear time and time again from security professionals, but for good reason. Operating system and software updates are not only important from a functionality standpoint, they also contain critical security updates that patch vulnerabilities. Where possible, enable automatic software updates to streamline the process and ensure you (and your staff) are always up to date. Leaving devices unpatched is a major gap in any organisation’s security posture and should be avoided at all costs.

4)      Consider utilising data protection software on faculty IT devices

Despite its widespread popularity and usage, traditional antivirus software only offers a baseline protection against well-known malware. This is simply not enough to stop many attackers, who use more sophisticated methods to penetrate systems and steal sensitive data. For more comprehensive protection, consider using data protection software that resides on the kernel level of endpoint devices and provides full visibility of all data being accessed and transmitted. The software should have the capability to fully lockdown confidential data, both structured and unstructured, and place enforcement policies on it to completely prevent it being removed from the IT environment it resides in without permission.

5)     Keep an eye out for suspicious user activity

Monitoring user behaviour for suspicious activity is one of the quickest ways to detect a security breach before it can cause major damage. If suspicious activity is identified (e.g. a teacher from the languages department accessing sensitive/confidential files from the science department, or the same login credentials being used on multiple devices at odd hours of the day), all parties involved should be notified immediately. Even with other forms of data protection in place, vigilant monitoring is still often the fastest way to identify a compromised account.

The ongoing pandemic has forced many organisations across the education sector to completely change their way of working in an incredibly short period of time, switching from traditional classroom based learning to e-learning, almost overnight.  Doing so has left many of them exposed to a wide range of cyber-attacks from both internal and external threats, putting sensitive data at risk. Fortunately, by following the best practice tips laid out in this article, many of the threats can be minimised, allowing teachers to get on with doing what they do best - educating and inspiring their students.

Tim Bandos, VP of Cybersecurity at Digital Guardian 

Tim Bandos, CISSP, CISA, CEH is an expert in incident response and threat hunting. He has over 15 years of experience in the cybersecurity world and has a wealth of practical knowledge gained from tracking and hunting advanced threats that targeted stealing highly sensitive data. A majority of his career was spent working at a Fortune 100 company where he built an Incident Response organization and he now runs Digital Guardian’s global Security Operation Center for Managed Detection & Response. 

You may also be interested in these articles:

Sponsored Video

Advertisers

Upcoming FE Events

Advertiser Skyscrapers

Newsroom Activity

Latest Education News

Further Education News

The FE News Channel gives you the latest education news and updates on emerging education strategies and the #FutureofEducation and the #FutureofWork.

Providing trustworthy and positive Further Education news and views since 2003, we are a digital news channel with a mixture of written word articles, podcasts and videos. Our specialisation is providing you with a mixture of the latest education news, our stance is always positive, sector building and sharing different perspectives and views from thought leaders, to provide you with a think tank of new ideas and solutions to bring the education sector together and come up with new innovative solutions and ideas.

FE News publish exclusive peer to peer thought leadership articles from our feature writers, as well as user generated content across our network of over 3000 Newsrooms, offering multiple sources of the latest education news across the Education and Employability sectors.

FE News also broadcast live events, podcasts with leading experts and thought leaders, webinars, video interviews and Further Education news bulletins so you receive the latest developments in Skills News and across the Apprenticeship, Further Education and Employability sectors.

Every week FE News has over 200 articles and new pieces of content per week. We are a news channel providing the latest Further Education News, giving insight from multiple sources on the latest education policy developments, latest strategies, through to our thought leaders who provide blue sky thinking strategy, best practice and innovation to help look into the future developments for education and the future of work.

In Jan 2021, FE News had over 173,000 unique visitors according to Google Analytics and over 200 new pieces of news content every week, from thought leadership articles, to the latest education news via written word, podcasts, video to press releases from across the sector, putting us in the top 2,000 websites in the UK.

We thought it would be helpful to explain how we tier our latest education news content and how you can get involved and understand how you can read the latest daily Further Education news and how we structure our FE Week of content:

Main Features

Our main features are exclusive and are thought leadership articles and blue sky thinking with experts writing peer to peer news articles about the future of education and the future of work. The focus is solution led thought leadership, sharing best practice, innovation and emerging strategy. These are often articles about the future of education and the future of work, they often then create future education news articles. We limit our main features to a maximum of 20 per week, as they are often about new concepts and new thought processes. Our main features are also exclusive articles responding to the latest education news, maybe an insight from an expert into a policy announcement or response to an education think tank report or a white paper.

FE Voices

FE Voices was originally set up as a section on FE News to give a voice back to the sector. As we now have over 3,000 newsrooms and contributors, FE Voices are usually thought leadership articles, they don’t necessarily have to be exclusive, but usually are, they are slightly shorter than Main Features. FE Voices can include more mixed media with the Further Education News articles, such as embedded podcasts and videos. Our sector response articles asking for different comments and opinions to education policy announcements or responding to a report of white paper are usually held in the FE Voices section. If we have a live podcast in an evening or a radio show such as SkillsWorldLive radio show, the next morning we place the FE podcast recording in the FE Voices section.

Sector News

In sector news we have a blend of content from Press Releases, education resources, reports, education research, white papers from a range of contributors. We have a lot of positive education news articles from colleges, awarding organisations and Apprenticeship Training Providers, press releases from DfE to Think Tanks giving the overview of a report, through to helpful resources to help you with delivering education strategies to your learners and students.

Podcasts

We have a range of education podcasts on FE News, from hour long full production FE podcasts such as SkillsWorldLive in conjunction with the Federation of Awarding Bodies, to weekly podcasts from experts and thought leaders, providing advice and guidance to leaders. FE News also record podcasts at conferences and events, giving you one on one podcasts with education and skills experts on the latest strategies and developments.

We have over 150 education podcasts on FE News, ranging from EdTech podcasts with experts discussing Education 4.0 and how technology is complimenting and transforming education, to podcasts with experts discussing education research, the future of work, how to develop skills systems for jobs of the future to interviews with the Apprenticeship and Skills Minister.

We record our own exclusive FE News podcasts, work in conjunction with sector partners such as FAB to create weekly podcasts and daily education podcasts, through to working with sector leaders creating exclusive education news podcasts.

Education Video Interviews

FE News have over 700 FE Video interviews and have been recording education video interviews with experts for over 12 years. These are usually vox pop video interviews with experts across education and work, discussing blue sky thinking ideas and views about the future of education and work.

Events

FE News has a free events calendar to check out the latest conferences, webinars and events to keep up to date with the latest education news and strategies.

FE Newsrooms

The FE Newsroom is home to your content if you are a FE News contributor. It also help the audience develop relationship with either you as an individual or your organisation as they can click through and ‘box set’ consume all of your previous thought leadership articles, latest education news press releases, videos and education podcasts.

Do you want to contribute, share your ideas or vision or share a press release?

If you want to write a thought leadership article, share your ideas and vision for the future of education or the future of work, write a press release sharing the latest education news or contribute to a podcast, first of all you need to set up a FE Newsroom login (which is free): once the team have approved your newsroom (all content, newsrooms are all approved by a member of the FE News team- no robots are used in this process!), you can then start adding content (again all articles, videos and podcasts are all approved by the FE News editorial team before they go live on FE News). As all newsrooms and content are approved by the FE News team, there will be a slight delay on the team being able to review and approve content.

 RSS IconRSS Feed Selection Page