Both administration and staff members from the Central New York Regional Information Center (CNYRIC) attended last week's annual RIC One DPSS* Statewide Conference in Albany, NY. The RIC One initiative is a Data Privacy and Security Service, which provides resources for all districts in New York State to navigate Ed Law 2-d and Part 121 Regulations. All regional information centers throughout New York State are part of the RIC One initiative.
The two-day conference had a variety of data privacy and security boot camps for attendees, including (but not limited to):
For their part, individuals from the CNYRIC team hosted a Cybersecurity Incident Response Plan Working Session, and sat in on a variety of other sessions and boot camps throughout the conference. CNYRIC Program Manager Steven Tryon co-hosted a session, "Build your District's Disaster Recovery Plan: IS your District Prepared for a Cyberattack or System Failure?" for attendees. Of special note here is that a disaster recovery template is actively being prepared by the RIC One group for use by districts across the state. The beta version of this document was available so that the presenters could walk the attendees through all the details of the plan, and the final version is expected to be ready in the coming weeks.
CNYRIC Assistant Director Josh Becker conducted a session "Inside the Attack: A Step-by-Step Breakdown of a Recent Cyber Attack," which focused on recent real-world examples of cyber incidents where attackers methodically infiltrated a network, established persistence, exfiltrated data, and actively attempted to lock administrators out of their own systems in an attempt to take over an entire network. This session was hosted with Paul Marco, Co-Founder of TALAS Security, and was tailored for K-12 technology leaders, aiming to provide them with critical indicators of compromise related to this particular attack, response actions, and proactive strategies to fortify their cybersecurity posture.
Josh and CNYRIC Graphic Technician Courtney Scaccia also hosted a boot camp, "Creating a Cybersecurity Incident Response Plan," (IRP) designed to help districts tackle the often-overwhelming task of preparing for the fallout of a cybersecurity attack. In this session, RIC One DPSS representatives shared the IRP template, and highlighted the areas that attendees would customize to fit their specific needs.
"The conference provided numerous opportunities to connect, in person, with customers, vendors, and potential vendors," said Steven. "Much was discussed, moving us quite a bit further along our security-related work path."
*Data Privacy and Security Service
The two-day conference had a variety of data privacy and security boot camps for attendees, including (but not limited to):
- New Data Protection Officer Boot camp
- Incident Response
- Disaster Recovery/Business Continuity
- New York State Education Department ISO Data Privacy
- Security Review and Data Privacy Inventory Tool
For their part, individuals from the CNYRIC team hosted a Cybersecurity Incident Response Plan Working Session, and sat in on a variety of other sessions and boot camps throughout the conference. CNYRIC Program Manager Steven Tryon co-hosted a session, "Build your District's Disaster Recovery Plan: IS your District Prepared for a Cyberattack or System Failure?" for attendees. Of special note here is that a disaster recovery template is actively being prepared by the RIC One group for use by districts across the state. The beta version of this document was available so that the presenters could walk the attendees through all the details of the plan, and the final version is expected to be ready in the coming weeks.
CNYRIC Assistant Director Josh Becker conducted a session "Inside the Attack: A Step-by-Step Breakdown of a Recent Cyber Attack," which focused on recent real-world examples of cyber incidents where attackers methodically infiltrated a network, established persistence, exfiltrated data, and actively attempted to lock administrators out of their own systems in an attempt to take over an entire network. This session was hosted with Paul Marco, Co-Founder of TALAS Security, and was tailored for K-12 technology leaders, aiming to provide them with critical indicators of compromise related to this particular attack, response actions, and proactive strategies to fortify their cybersecurity posture.
Josh and CNYRIC Graphic Technician Courtney Scaccia also hosted a boot camp, "Creating a Cybersecurity Incident Response Plan," (IRP) designed to help districts tackle the often-overwhelming task of preparing for the fallout of a cybersecurity attack. In this session, RIC One DPSS representatives shared the IRP template, and highlighted the areas that attendees would customize to fit their specific needs.
"The conference provided numerous opportunities to connect, in person, with customers, vendors, and potential vendors," said Steven. "Much was discussed, moving us quite a bit further along our security-related work path."
*Data Privacy and Security Service
