About CIS Critical Security Controls
The CIS Critical Security Controls are a series of cybersecurity best practices, a prioritized set of actions for protecting your district and data from cyber-attack vectors, which you implement based on your school system’s level of risk tolerance. In many cases, CIS offers no-cost open source tools to aid in implementing the Controls. Learn more about MS-ISAC on the CIS website.
ISAC can support you in those conversations.
Similarly, take advantage of templates and other pre-made
resources we offer that will amplify communications about your cybersecurity efforts and broadcast your security concerns. We want to partner with you to help tell your cybersecurity story.
Also, consider implementing the CIS Critical Security Controls and a CIS SecureSuite membership, both of which are free of charge for MS-ISAC members. The Controls are a proven way
to reduce risk and increase cybersecurity maturity within an organization. In fact, some states have begun mandating use
(also free to public schools) is software designed to automate implementation of some of the Controls.
Finally, it is important to review the rapid changes and new tools introduced during the pandemic. Any kind of security assessment should incorporate lessons learned from the broader K-12 community into your school’s cybersecurity program.
You don’t have to do all of this alone. Currently, some 2,800
K-12 districts have signed up for the MS-ISAC service, and we have started a K-12 workgroup to help promote cybersecurity information sharing and cooperation among schools. Still, more than 100,000 schools have yet to join the MS-ISAC and benefit from our no-cost services. If your school has not yet joined, we are standing by, ready to help.
Recognized globally for his expertise in cybersecurity, Josh Moulin is the Senior Vice President of Operations & Security Services at the Center for Internet Security (CIS) and has worked
in cybersecurity since 2004. Prior to joining CIS, Moulin was an Executive Partner at Gartner and advised Federal Government and defense executives, a CIO and CISO within the U.S. nuclear weapons complex, and a commander of an FBI cybercrimes taskforce. He holds a master’s degree in Information Security & Assurance and over a dozen certifications in digital forensics and cybersecurity.
C M Y CM MY CY CMY K
of the CIS Controls as a cybersecurity framework. SecureSuite
MS-ISAC Journal Half-page AD.pdf
1 7/13/21
1:39 PM
Block phishing, malware, and ransomware threats —at no cost.
Malicious Domain Blocking and Reporting (MDBR)
􏰑􏰐􏰏􏰎􏰑􏰍􏰌􏰐􏰋􏰊􏰉􏰈􏰌􏰇􏰆􏰅􏰏􏰄􏰐􏰏􏰃􏰑􏰆􏰂􏰄􏰁􏰀􏰆
THEJOURNAL.COM | 9