Schools need to have access to information for their staff and students, but there is a fine line between freedom of information and the risk of information abuse and loss. Educational establishments, like any place of work, need to protect their IT networks from viruses, malware, unauthorised access and data leaks, but at the same time, have a security system that is easy to use and affordable to manage.
The changing nature of the technology landscape, and the threats that accompany it, further complicate the situation. The number of web based applications that higher education users rely on and access from the school network continues to increase at a dramatic rate. This is due to the emergence of web 2.0 technologies, remote user access, and an increase in smartphone usage. School IT departments need to balance the use of productive applications versus non-productive and potentially damaging ones. In the case of Facebook for instance, there is a need for granular application control that supports policies allowing Facebook access for certain groups or individuals, but at the same time there is a requirement for disabling features that have no value, or that present opportunities for data leakage.
Cambridge Regional College recently addressed this as it updated its IT security to match its expansion. It now has a set of Dell SonicWALL solutions in place, which protect the school network but give teachers flexibility to make lessons current and engaging for learners. For example, they can allow students to have access to Facebook (while blocking Facebook Chat), and permit usage of YouTube and BBC iPlayer for research purposes. The lessons can be made fun and interactive for pupils, using the technology they are used to engaging with in their daily lives, but also allowing teachers and IT staff to ensure safe internet access.
Behind the wall
Major virus and worm outbreaks can be extremely disruptive, bringing down a school network, crippling day-to-day operations and requiring enormous clean-up efforts. To protect against threats, it is important for schools to stop breaches before they happen through a well-designed system of network access control and identity management. All devices attempting to log onto the network must be examined to verify that it complies with the necessary security policies e.g. has credible antivirus software installed, which is regularly updated.
Given the different levels of security required, schools need an intelligent, flexible system that can be managed centrally. One option is to install a Next Generation Firewall: a security product that includes multiple security features integrated onto one device such as network and application inspection, antivirus and network intrusion detection and prevention.
Through following the five policies outlined below, schools should be able to continue to deliver education in a fun and interactive way, whilst not bringing the system down through unwanted malware and viruses; a balancing act that is of benefit to everyone involved.
1. Centralise management: schools do not tend to have large it departments, so the system needs to be easy to manage and easy to fix if issues arise.
2. Control access: make sure all areas of access to the school network are protected.
3. Train staff regularly: how to use the it systems; how to keep the school network protected; how to make sure students are using it safely; and emergency protocol.
4. Research, test and be sure to select the right it security solutions: it’s not a one size fits all situation, different schools will need different products.
5. Keep up to date with technological advances as much as possible, as security threats will develop alongside them.
About the author
Florian Malecki is EMEA senior product marketing manager at Dell Sonicwall.