Reiterate the "Cybersecurity/Data privacy is a Team Sport" analogy. Too often even the Business Office assumes that the IT department alone will be able to protect the data.
Ransomware and identity theft are for-profit businesses. Groups are specifically targeting schools because they know we are soft targets (with some valuable data).
Remind them of the role that human error plays in hacks - over 80%. Independent schools are trusting, friendly places, but a greater level of skepticism will be required to combat social engineering against business offices.
The same way that robbers target banks, cyber criminals target the business office - because that's where the money is.
We know better now, but in the past they probably saved all sorts of documents that now need to be scrubbed for those old network storage drives - scans of passports or tax returns, anyone? Take some time to clear out storage, especially for employees who may have left years ago.
Code of Conduct
Learn more about ATLIS membership
© Association of Technology Leaders in Independent Schools4 Weems Lane #257Winchester, VA 22601