Skip to main content
U.S. flag

An official website of the United States government

Here’s how you know

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

HTTPS

Secure .gov websites use HTTPS
A lock (LockA locked padlock) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cybersecurity & Infrastructure Security Agency
America's Cyber Defense Agency

Search

 
 
  • Topics
    Cybersecurity Best Practices
    Cyber Threats and Advisories
    Critical Infrastructure Security and Resilience
    Election Security
    Emergency Communications
    Industrial Control Systems
    Information and Communications Technology Supply Chain Security
    Partnerships and Collaboration
    Physical Security
    Risk Management
    How can we help?
    GovernmentEducational InstitutionsIndustryState, Local, Tribal, and TerritorialIndividuals and FamiliesSmall and Medium BusinessesFind Help LocallyFaith-Based CommunityExecutives
  • Spotlight
  • Resources & Tools
    All Resources & Tools
    Services
    Programs
    Resources
    Training
    Groups
  • News & Events
    News
    Events
    Cybersecurity Alerts & Advisories
    Directives
    Request a CISA Speaker
    Congressional Testimony
  • Careers
    Benefits & Perks
    HireVue Applicant Reasonable Accommodations Process
    Hiring
    Resume & Application Tips
    Students & Recent Graduates
    Veteran and Military Spouses
    Work @ CISA
  • About
    Culture
    Divisions & Offices
    Regions
    Leadership
    Doing Business with CISA
    Site Links
    Reporting Employee and Contractor Misconduct
    CISA GitHub
    Contact Us
Report a Cyber Issue
America's Cyber Defense Agency
Breadcrumb
  1. Home
Share:
Kids sitting around a table playing and learning

Protecting Our Future

Partnering to Safeguard K-12 Organizations from Cybersecurity Threats

Report a Cyber Issue
Organizations should report anomalous cyber activity and or cyber incidents 24/7 to report@cisa.gov or (888) 282-0870.

Malicious cyber actors are targeting K–12 education organizations across the country, with potentially catastrophic impacts on students, their families, teachers, and administrators. A new report from the Cybersecurity and Infrastructure Security Agency (CISA) helps schools reduce the risks of a cyber catastrophe.

There is no more important institution to the future prosperity and strength of the United States than our nation’s K–12 education system.

Since the COVID-19 pandemic, K–12 schools and school districts have increasingly adopted advanced networking technologies that facilitate learning and make schools more efficient and effective. This technological gain, however, has introduced heightened risks.

Protecting Our Future: Partnering to Safeguard K-12 Organizations from Cybersecurity reports on cybersecurity risks facing elementary and secondary schools and provides recommendations that include cybersecurity guidelines designed to help schools face these risks.

Kids at school working around a computer

The Report and Media Kit

This report covers cybersecurity risks facing elementary and secondary schools and provides recommendations that include cybersecurity guidelines designed to help schools face these risks.

View Report and Media Kit
Illustration of a city silhouette

Recommendations for K-12 Organizations

1. Invest in the most impactful security measures and build toward a mature cybersecurity plan.

In an environment of limited resources, leaders should leverage security investments to focus on the most impactful steps. Begin with a small number of prioritized investments:

  • Deploy multi-factor authentication (MFA)
  • Mitigate known exploited vulnerabilities
  • Implement and test backups
  • Regularly exercise an incident response plan
  • Implement a strong cybersecurity training program

In the near-term, K–12 entities should progress to adopting further investments in alignment with the full list of CISA’s Cybersecurity Performance Goals (CPGs). Over the long-term, K-12 entities should mature to build an enterprise cybersecurity plan that leverages the NIST Cybersecurity Framework (CSF).

2. Recognize and actively address resource constraints.

Most school districts are doing a lot with a little. There is a clear need for increased cybersecurity budgeting and support mechanisms across the community. This resource shortfall is a major constraint to implementing effective cybersecurity programs across all K-12 entities. CISA recommends that K-12 organizations take these key steps:

  • Work with the state planning committee to leverage the State and Local Cybersecurity Grant Program (SLCGP).
  •  Utilize free or low-cost services to make near-term improvements in resource-constrained environments.
  • Expect and call for technology providers to enable strong security controls by default for no additional charge.
  • Minimize the burden of security by migrating IT services to more secure cloud versions.

3. Focus on collaboration and information sharing.

K-12 entities struggle to fund cybersecurity resources while combating continuous threats. Situational awareness of changes in the risk environment is critical to ensure that resources are allocated to the most effective security mitigations and controls. CISA recommends that K-12 organizations take these key steps:

  • Join relevant collaboration groups, such as MS-ISAC and K12 SIX.
  • Work with other information-sharing organizations, such as fusion centers, state school safety centers, other state and regional agencies, and associations.
  • Build a strong and enduring relationship with CISA and FBI regional cybersecurity personnel.
An illustration of a city

How CISA is Working with K-12

Cyberattacks, and the threat thereof, has strained resources and impacted delivery of critical education services across the nation. This has placed an untenable burden on our educational institutions and the populations that they serve and protect — children, parents, and educators. A continuing drumbeat of cyber intrusions is threatening the nation’s ability to educate our children while also placing personal information and school data at risk.

Congress recognized this heightened risk environment by enacting the K–12 Cybersecurity Act of 2021 (“The Act”), which required the Cybersecurity and Infrastructure Security Agency (CISA) to report on cybersecurity risks facing elementary and secondary schools and develop recommendations that include cybersecurity guidelines designed to help schools face these risks.

Protecting Our Future: Partnering to Safeguard K-12 Organizations from Cybersecurity provides insight into the current threat landscape and the K–12 community’s capacity to prevent and mitigate cyber-attacks.

Recommendations throughout this report are informed by insights from policymakers, government officials, and members of the K–12 community. These recommendations are presented with a caveat: change must come from the top down. Leaders must establish and reinforce a cybersecure culture. Information technology and cybersecurity personnel cannot bear the burden alone.

This report is only a starting point. CISA will continue to engage with federal partners, including the U.S. Department of Education, and work closely with state and local officials, school leaders, emergency management officials, nonprofits, community leaders, and the private sector to identify areas for progress and provide meaningful support that measurably reduces risk.

Illustration of a city

How To Report K-12 Cyber Incidents

Every K-12 organization—large and small—must be prepared to respond to disruptive cyber incidents. CISA stands ready to help you prepare for, respond to, and mitigate the impact of cyberattacks.

When cyber incidents are reported quickly, we can use this information to render assistance and as warning to prevent other organizations and entities from falling victim to a similar attack. 

CISA encourages our stakeholders to voluntarily share information about cyber-related events that could help mitigate current or emerging cybersecurity threats to critical infrastructure.  

The Online Toolkit

The toolkit aligns resources and materials to each of CISA’s three recommendations along with guidance on how stakeholders can implement each recommendation based on their current needs.

Along with each recommendation, stakeholders will find key actions and related resources to help them confidently build, operate, and maintain resilient cybersecurity programs at their school or district.

The toolkit also shares additional free cybersecurity trainings and resources available for the K-12 community.

Learn More

EDUCATIONAL INSTITUTIONS

CISA partners with educational institutions and other organizations throughout government, law enforcement, and communities nationwide and offers a variety of resources, programs, and tools to make our schools safer for students, staff, and parents.

Learn More

SCHOOL SAFETY

CISA, along with other organizations throughout government, law enforcement, and communities nationwide, supports K-12 schools and districts in their efforts to enhance school safety and security.

Learn More

Return to top
  • Topics
  • Spotlight
  • Resources & Tools
  • News & Events
  • Careers
  • About
Cybersecurity & Infrastructure Security Agency
  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram
  • RSS
CISA Central 888-282-0870 Central@cisa.dhs.gov
DHS Seal
CISA.gov
An official website of the U.S. Department of Homeland Security
  • About CISA
  • Accessibility
  • Budget and Performance
  • DHS.gov
  • FOIA Requests
  • No FEAR Act
  • Office of Inspector General
  • Privacy Policy
  • Subscribe
  • The White House
  • USA.gov
  • Website Feedback