Security must-knows for schools
By KT Ong February 14, 2013
- Number of web apps that higher education users rely on and access from school networks continues to increase at a dramatic rate
- School IT departments need to balance use of productive applications vs. non-productive and potentially damaging applications
SCHOOLS need to have access to information for their staff and students, but there is a fine line between freedom of information and the risk of information abuse and loss.
Schools need to protect their IT networks from viruses, malware, unauthorized access and data leaks. At the same time, they require a security system that is easy to use and affordable to manage.
The changing nature of the technology landscape, and the threats that accompany it, further complicate the situation.
The number of web-based applications that higher education users rely on and access from the school network continues to increase at a dramatic rate. This is due to the emergence of Web 2.0 technologies, remote user access, an increase in smartphone usage and students bringing their own devices, paving the path for the ever-growing BYOD trend.
School IT departments need to balance the use of productive applications versus non-productive and potentially damaging applications.
In the case of Facebook for instance, there is a need for granular application control. Schools have policies to allow Facebook access for certain groups or individuals, but at the same time they need to disable features that have no value or even open the school’s network up for vulnerabilities, intrusion or data leakage.
Major virus and worm outbreaks can be extremely disruptive and can bring down a school network, cripple day-to-day operations and require enormous clean-up efforts. To protect against threats, it is imperative for schools to stop breaches before they happen through a well-designed system of network access control and identity management.
All devices attempting to log on to the network must be examined to verify they comply with the necessary endpoint security policies, e.g. have antivirus software installed.
Given the different levels of security required, schools need an intelligent, flexible system that can be managed centrally.
One option is to install a next-generation firewall: A security product which includes multiple security features integrated into one device such as network and application inspection, antivirus protection as well as network intrusion detection and prevention.
Tips to help schools safely navigate the security minefield
- Train all staff regularly: They should know how to use the IT systems, how to keep the school network protected, how to make sure students are using technology and the Internet safely, and what they should do in the event of an emergency.
- Access control: Make sure all areas of access to the school network are protected.
- Centralize management: Schools do not tend to have large IT-departments, so the system needs to be easy to maintain and easy to manage, should issues arise.
- Research, test and be sure to select the right IT security solutions; it’s not a one size fits all situation. Different schools will need different products. Keep up to date with technological advances as much as possible, as security threats will develop alongside them.
If a school follows these policies, they will continue to deliver education in a fun and interactive way whilst not bringing the whole school system down through unwanted malware and viruses.
KT Ong is the general manager of the Commercial Business at Dell Sales Malaysia.