Presentation on theme: "Information Security The Responsibility of Security Lies on The Shoulders of Each and Every User……. R. LaRocca 1997 Robert LaRocca - Director Information."— Presentation transcript:
Information Security The Responsibility of Security Lies on The Shoulders of Each and Every User……. R. LaRocca 1997 Robert LaRocca - Director Information Technology Security Linda Mainord – Chief Technology Officer Joseph Moore – Chief Operations Officer
Topics for Discussion: Reasons Why Information Security is Critical to District Operations 1.Keep Kids Safe 2.Data Protection 3.Prevent Misuse of Resources 4.Prevent Interruption of Operations 5. What IT Security Has Accomplished 6.How We Are Addressing The Issues
Keep Kids Safe Parents trust us to keep their children safe during the hours they are in our care. This is simply a non-negotiable requirement that we have to meet.
Data Protection As schools strive to increase student achievement by collecting data about learning performance, the resulting data systems become increasingly tempting targets for illegal activity by those seeking to change or steal sensitive and restricted information. (Live password cracking demonstration)
Prevent Misuse of Resources Teachers, applications and educational resources are allocated to promote learning within and beyond school walls. But without security these resources can be easily highjacked and used for launching denial of service attacks, for promulgating viruses, personal business, and other inappropriate activity. The growing use of wireless connectivity makes this an even greater challenge.
Prevent Interruption of Operations If our technology systems are not functional, they are not processing teaching, learning, administration, or any other aspect of the educational process. Without continually enhancing the evolvement of security, the responsibility of maintaining systems operational will quickly overwhelm critical resources within our district.
Through Board Action and Approval We Have Accomplished: IPS – Intrusion Prevention Scanning –Live Demo –Our Network is attacked approximately 16,000 times a day E-Mail Scanning –Removing Viruses and Spam From E-mail –100,000 E-Mails per week are sent to the district – (Phishing Demo) –60,000 are blocked as spam or unacceptable DeskTop Security – Patching, Service Packs, Removing Unauthorized Files, Asset Inventory, Application Deployment (Sample Hacking tool Report)
Internet Filtering – Lexicons, Abuse, Appeals Redundant Firewalls – Hot Failover Virus Protection – 700 Servers and 65,000 Desktops are Updated Daily Enterprise Backups – 176+ Locations, –All critical Applications = 37 Terabytes of data (37,000,000,000,000 TB) Web Caching – 60% of Schools are installed –Throughput speed has doubled, access time has been cut in half. Accomplishments (cont.)
How We Continue To Address The Issues Awareness Program –Monthly Security Web Articles –Posters –Bulletins –Site Visits –Security Week – Hack Me Contest – Student Security Video –Reward program – Students who discover vulnerabilities Token Security For Administrators ( Provide Sample ) Student IDs and Identity Mgmt– Accountability, Responsibility Centralization – Monitoring, Access, and Maintenance Auditing Critical Applications – Logging, Reporting Investing In Leading Edge Technology Strict Password Rules and Expirations BOARD SUPPORT!!!!