To avoid instances like this, administrators and IT workers must understand the risks unique to education. A school network is often a student’s only way to access the internet. The goal is to provide students unrestricted information to promote learning. Network login information is usually shared freely in public spaces to make information easily accessible to school attendees and visitors. Many see firewalls as barriers to academic and personal freedom.
This line of thinking has security drawbacks. It magnifies the biggest weakness in any network—the human element. As a result, both students and faculty have easy access to suspect sites that leave the network wide open to malware and attacks.
The way information is stored in this environment is crucial. In some cases, there could be social security numbers, scientific data, and financial records all on the same server. With various groups aiming for different pieces of the pie, schools need to keep security in mind to avoid making that information vulnerable.
Even with these limitations, educational freedom does not have to come at the price of data security.
Effective strategies are readily available for organizations and administrators to help minimize their risk. Applying these three core concepts will help improve the effectiveness of any school’s security plan:
1) Separate
Sensitive and proprietary data should not be stored on a common network. As convenient as it may be, it is not worth the increased risk exposure. Create clear-cut dividers that segment all data. These digital silos make it easier to allow only the authorized users to access sensitive information.
2) Trust
Studies have shown that human error is the source of a majority of breaches. Carefully evaluate all users and their usage habits. Make sure access is necessary before handing it out. Reserve administrative privileges only for those that truly need them.
3) Maintain
Regular maintenance is essential to reducing risk. Remove account users from the network as soon as they no longer need access. This is not limited to entering and leaving the organization. Reexamine user access to account for promotions or role changes. This limits the number of user accounts and prevents them from unauthorized access.
Data security in education is not easy, but it is not impossible. With the stakes higher than ever, schools should take action to keep their students and information secure.
Mr. Waskelis is responsible for the direction and business performance for AT&T Consulting’s Security service lines. Todd’s organization provides both strategic and tactical security consulting services to enterprises and government agencies covering a wide spectrum of offerings from compliance and risk management to technical services for emerging technologies such as cloud and mobility.
If you enjoyed this article and want to receive more valuable industry content like this, click here to sign up for our digital newsletters!
Leave a Reply