According to a recent nationwide survey of public school district IT and security directors, one-third of respondents said that their districtâ€™s security needed improvement.
The survey, the CDW-Government (CDW-G) 2008 School Safety Index, also found that schools throughout the nation had taken large strides at improving physical security, but that they had actually taken a step back when it came to IT. School districts managed to improve their physical safety score by 39 percent from the previous yearâ€™s index, but during that same time period, their cyber safety scores declined by 25 percent.
Among some of the findings of the survey include:
According to Patrick Fiel, ADT public safety advisor for education, physical security is the most important aspect of security for an individual school and that IT security is more of system wide issue.
Fiel added that many school districts fail to do a detailed security assessemnt of their security needs and that the first thing he addresses with them is their ability to lockdown a school both internally and externally.
"There's still a few schools out there that canâ€™t do that today," he said.
David Hutchins, director for K-12 education at CDW-G, feels that school districts are improving overall in both physical and IT security, but that they still need to work on integrating the two.
"I think there is still a great deal of improvement that needs to come in terms of the two working together," he said.
Though the majority of school districts have taken steps to authenticate users on their computer networks, the survey found that 16 percent of districts, which are mainly located in urban and rural districts, still use general log-ons, rather than unique user names and passwords.
Fourteen percent of all school districts surveyed said that they had had at least one IT security breach within the last 12 months, which is a 5 percent increase over the previous year.
While schools have substantially improved their physical security tactics, the survey notes that some districts are failing to take advantage of new technologies. Of the 45 percent of districts that reported they used mass notification systems, only 32 percent said that they used such tools as text messages.
The largest barrier in improving IT security in many districts boiled down to money. The survey noted that 79 percent of those polled said that the major hurdle to improving IT security in their districts was budget constraints. Another 61 percent said they lacked the staff resources necessary to improve security, while 47 percent said they didnâ€™t have hardware/software that was needed.
The results were the same among Physical security directors, 69 percent of whom said that budget constraints were their biggest hurdles. Compared to IT security directors, however, only 29 percent of physical security professionals cited a lack of staff resources. About 32 percent said that they need more tools to improve physical security.
"I have seen, over the last couple of years, more funding moved towards security. It is a priority of school districts and communities are making it a priority and the districts are making it a priority for the safety of the students, both physical safety as well as intellectual safety in term of the internet," Hutchins said "Itâ€™s a battle every year for these districts to get the funding to do the projects that they need to do."
One of the solutions suggested in the surveyâ€™s findings to help improve security in the school districts is to integrate IT and physical security tools, which would thereby utilize staff and funds more efficiently. The report also advises districts to take advantage of mass notification systems and use all of the channels that are available to them.
Fiel recommends that school districts bring in a solution integrator to discuss what securtiy infrastructure already exists and what can be done within a systems budget to address any needs.