Change display time — Currently: Eastern Daylight Time (EDT) (Event time)

Leading Cyber-Resilient Schools: Turning Digital Risk into Leadership Strength

,
W207C

Innovator Talk
Recorded Session
Save to My Favorites

Session description

Today’s schools face complex digital risks—from preschool tablets to districtwide data systems. This session helps leaders move from fear to fluency by applying NIST-aligned cybersecurity principles through a learning and leadership lens. Attendees will gain tools to protect students, empower staff, and strengthen systemwide digital trust.

Outline

Segment Time Content & Engagement Process & Engagement Tactics
1. Setting the Stage: The Invisible Threat 10 min Todd opens with a vivid real-world example of a school system compromised by a small oversight—illustrating the human, operational, and reputational costs. Jess connects this to the educational mission: protecting learning continuity and trust. Audience reflection: “What keeps you up at night about data, devices, or digital safety?”
2. Understanding the Modern K–12 Risk Landscape 10 min Todd shares trends from national cybersecurity reports (CISA, CoSN, NIST) showing that schools are now among the top targets for cyberattacks. He explains the growing complexity of balancing student data privacy, device management, and staff awareness. Presenter-driven discussion: contrasting examples from pre-K to high school.
3. Leadership Beyond IT: A Systems Lens on Safety 15 min Jess reframes cybersecurity as a leadership capacity issue—not just an IT function. Drawing parallels to systems thinking, communication flow, and culture-building, she highlights how districts can embed security into decision-making, onboarding, and instruction. Quick live prompt: “Where does cybersecurity live in your district—IT, policy, or culture?”
4. Building Cyber-Resilient School Communities 15 min Todd and Jess present a joint framework that integrates:
• Technical readiness (based on NIST core functions)
• Operational leadership (crisis communication, vendor management)
• Human behavior (training, awareness, and accountability).
They share district-tested examples of what works—and what doesn’t. Participants jot personal takeaways or leadership shifts they’ll make in their role.
5. Leading Forward: From Awareness to Action 10 min Jess closes by connecting cybersecurity to educational values—trust, access, and belonging. The duo shares a short resource guide and leadership checklist for attendees to take home. Final reflective prompt: “What’s one conversation you’ll start this week to make your district safer?”

More [+]

Outcomes

After this session, participants will be able to:

Identify key cybersecurity risks within their school or district’s technology ecosystem from both instructional and operational perspectives.

Analyze how age, access, and digital use patterns influence student data privacy and safety from preschool through high school.

Design an action plan for strengthening digital safety practices that align with district policy, leadership priorities, and the ISTE Education Leader and Digital Citizen Advocate standards.

Communicate a shared vision of cybersecurity as a learning and leadership responsibility—empowering staff, students, and families to protect and participate confidently.

More [+]

Supporting research

CoSN & K12 Security Information Exchange. (2023). The state of K–12 cybersecurity: Year in review 2023. Consortium for School Networking. https://www.k12six.org/reports

Fullan, M. (2020). Nuance: Why some leaders succeed and others fail. Corwin Press.

International Organization for Standardization. (2022). ISO/IEC 27001:2022 information security, cybersecurity and privacy protection — Information security management systems. https://www.iso.org/isoiec-27001-information-security.html

ISACA. (2023). State of cybersecurity 2023, Vol. 1. ISACA Press. https://www.isaca.org/resources/research-reports/state-of-cybersecurity-2023

National Institute of Standards and Technology. (2018). Framework for improving critical infrastructure cybersecurity (Version 1.1). U.S. Department of Commerce. https://www.nist.gov/cyberframework

Office of Educational Technology, U.S. Department of Education. (2022). Protecting student privacy while using online educational services: Requirements and best practices. https://studentprivacy.ed.gov

ProPublica. (2024, March 7). PowerSchool data breach exposed information of thousands of K–12 students. https://www.propublica.org/article/powerschool-student-data-breach

The K–12 Cybersecurity Resource Center. (2024). K–12 Cyber incident map. https://k12cybersecure.com/map/

U.S. Government Accountability Office. (2022, October). Critical infrastructure protection: Additional federal coordination is needed to enhance K-12 cybersecurity (GAO-23-105480). https://www.gao.gov/assets/gao-23-105480.pdf

More [+]

Presenters

Photo
Dr. Jessica Hammond
CEO
Ascend Teaching and Learning
Photo
Todd Hammond
Security & Risk Officer
Ascend Teaching and Learning

Session specifications

Topic:

Safety, Security, and Student Data Privacy

Audience:

District-Level Leadership, School Level Leadership, Technology Coach/Trainer

Attendee devices:

Devices not needed

Subject area:

Computer Science, Technology Education

ISTE Standards:

For Coaches: Digital Citizen Advocate

Disclosure:

The submitter of this session has been supported by a company whose product is being included in the session
Related exhibitors:
U.S. Department of State,
Cybernut,
Microsoft Corporation,
Kahoot! EDU, Inc.

People also viewed

AI in Every Grade: Real Classrooms, Real Impact
Fearless Leadership: Using Tech Tools to Rewrite School Culture
Stat Wars: AI vs. The Old Code