Missouri auditor lists cyber security risks for schools

Missouri State Auditor Nicole Galloway has released a list of the top cyber security risks in Missouri schools.

The issues were identified as part of the Cyber Aware Schools audits initiative, which focuses on increasing safeguards against unauthorized access to sensitive information.

The report lists the following 5 issues as the biggest concerns for Missouri schools:

Data management program: The report says some districts don’t have a system in place that effectively allows access to records when needed, while also preventing unauthorized access.

Account management: Policies requiring staff and faculty to continually review user access were not clearly stated in many districts where student records were shared. This includes removing access from certain users and requiring users to change their passwords.

Security precautions: Some districts didn’t appoint a security administrator, and didn’t offer training on security measures.

Incident response planning: Some districts didn’t have a plan of response in the case of a data breach.

Vendor contracts: Some districts hold contracts with third-party vendors that don’t clearly outline a guarantee of cyber protection or proper access of information.

“I believe this report can serve as a guiding tool for district leaders who want to take action to better protect student data, but until now, weren’t sure where to start,” Galloway said in a statement.