The future success of education technology lies in robust IT risk management


    The COVID-19 pandemic has accelerated the shift to remote, home-based learning. As restrictions ease around the world and in-person classes resume, educational facilities returning to the new normal need to update cyber and physical security defences to protect learners in a new, digital-forward environment.

    Schools have been a top target for cyber criminals since remote learning started to take off. According to a report, 2020 marked a record-breaking year for cyberattacks against public schools in US, with similar incidents happening in the UK. In 2021, schools and governments have started to respond – pledging millions to upgrade campus security at educational institutions.

    Seamless and hybrid learning is here to stay. As schools continue to embrace devices and technologies to teach, the time is now for school administrations and IT departments to shore up their capabilities in cybersecurity and data privacy to ensure the best learning environment for students and teachers.

    An ideal target

    Schools have always been a goldmine of valuable personal information. Students’ identification numbers, health information, as well as parents’ payment details are all ripe for exploitation. In the age of hybrid learning, students and teachers also interact with multiple devices in a day, transferring them between home and school – further opening school systems up to attack through unsecured laptops, tablets and networks.

    Cyber attackers are also evolving, using increasingly sophisticated attacks such as phishing, DDoS attacks, social engineering and other methods that we haven’t dreamed of yet. These are more than capable of getting past antivirus software and firewall protections that are currently deployed at most schools. Compared to private enterprises, many education systems simply lag behind in cybersecurity and data-privacy skills, technologies and protocols needed to defend against the cyber threats of today.

    The numbers speak for themselves. Microsoft’s global threat activity tracker reports that the education industry far outstrips other sectors in the reported number of enterprise malware encounters in the last 30 days. The Apricorn 2021 Global IT Security Survey corroborates this, finding the education sector to be the most at risk for cybersecurity breaches and data loss.

    Worryingly, 69.4% of Apricorn survey respondents from the education sector don’t think of themselves as targets that attackers can use to access data, compared to 37.5% in information technology. But clearly, it’s high time that schools re-evaluate their cybersecurity and data privacy practices to secure the future of hybrid learning and education.

    Multiple layers of safety and security

    A robust IT risk-management implementation must take a zero-trust approach to security, which requires verifying anything and everything trying to connect to its systems. This encompasses both the hardware and software components of education systems, such as the devices that students and teachers use every day, the system that these devices connect to, the ways that identity is authorized and controlled on school applications, and the tools used to monitor the whole IT ecosystem.

    Hardware protection is a low-hanging fruit that schools can tackle first. Schools should start with hardware root of trust as the foundation for all secure operations, such as a certified Platform Firmware Resilience (PFR) server that comprehensively prevents all attacks on firmware. Next, secure digital devices. While devices allow students and teachers the mobility to work anywhere, it is inevitable that laptops and tablets could be left in unsupervised locations and exposed to grab-and-run thefts. Devices that come with Kensington security slots and padlocks will be useful to prevent such attempts, and chassis-intrusion alerts can help alert users almost immediately to any tampering.

    At the next level, schools must protect passwords and encryption keys to deter hackers from accessing sensitive data. Processors with built-in multi-factor authentication and data-encryption solutions mitigate security risks and automatically protect young students’ files. Devices with built-in Trusted Platform Module (TPM) chips also ensure that keys, digital certificates, passwords and data are securely stored. Biometrics such as fingerprint and face authentication as well as physical defences, like webcam shields, are also the norm now – so students and teachers will expect a similar level of security integrated into issued devices. Even so, disguised cyber threats can sneak in over network-attached devices to steal private data or transmit inappropriate content. In that case, a commercial-grade intrusion-prevention system that is able to perform in-depth scans of all inbound and outbound internet data and block such attacks will be critical.

    In the event that a network user is compromised, or a hacking attempt is made through an external USB device, school administrations and IT departments must be able to find and prevent such actions rapidly. A centralized IT-management system is part of the solution, with advanced artificial intelligence (AI) options available on the market to quickly disable unauthorised access to confidential data and reduce virus infection.

    A shared attitude toward data safety

    Hardware and software protection must work together in a multi-layered defence system to fully protect the digital educational environment. Powerful and reliable anti-virus software that can proactively ward off viruses, malware and other unwanted programs, secure internet browsing and safely store files and passwords across devices are the gold standard. At the same time, cyber hygiene is crucial – requiring IT teams to be on the ball about updating applications and patching security holes.

    Today, every student and faculty member is using multiple devices to access school systems for work and learning. With so many entry points for cyber threats, updating data-protection and cybersecurity skills in the education sector is particularly important. Schools must pay special attention to student and employee awareness – when a data breach can start from anywhere, everyone is responsible for the safety of school systems. With a shared attitude toward data safety and a robust IT risk-management framework, only then can the education industry soar to new heights with the possibilities of hybrid learning.

    Recommended products for hybrid education

    • ASUS ExpertBook B3 Flip (B3402F) is the best companion for teachers and students, and the perfect colleague for business users and pros. With a versatile and tough design, studying everywhere is no longer a dream. It’s equipped with a 360° hinge for total display flexibility, a world-facing camera for a new perspective, and a garaged stylus for simple, safe input. It’s also ready for Windows 11, empowering educators and IT leaders with enhanced comprehensive security and privacy. Features include hands-free setup and management options for rapid deployment of learning tools, plus always-on protections to safeguard everything on the system.
    • ASUS ExpertCenter D9 SFF delivers school horsepower with a next-level Intel® vPro® technology for modern management for school IT. It also features Intel Active Management Technology (AMT) for campus remote manageability that works on wired and wireless networks to reduce support costs, and Intel Stable IT Platform Program (SIPP) to minimize computing disruptions with stable, validated platforms. Once set up, vPro™ remote management gives a campus IT department unparalleled freedom and control to manage distributed students and teachers device networks. These security features also help protect students — whether they are at home or at school — by blocking dangerous and inappropriate content.
    • ASUS ExpertBook B9 offers comprehensive business-grade security from integrated hardware and firmware, to software and identity protection. With multiple seamless security layers, ExpertBook B9 has been verified as a Windows Secured-core PC — an assurance of best-in-class data and asset security for your business or educational establishment. Protections include a physical webcam shield, TPM 2.0 security, an IR camera and fingerprint sensor for biometric login, a Kensington lock slot for anchored security and USB port control to limit external-device access. It even comes with McAfee anti-virus software to ensure it is protected right out of the box.