CISA announces secure by design pledge with K-12 education tech providers

Image via Pixabay

The Cybersecurity and Infrastructure Security Agency (CISA) has announced a voluntary pledge for K-12 Education Technology software manufacturers to commit to designing products with greater security built in. As of September 1, CISA has received commitments from six K-12 software technology providers, including some of the largest providers of K-12 education software in the United States. Commitments received include PowerSchool, Classlink, Clever, GG4L, Instructure and D2L.

“We need to address K-12 cybersecurity issues at its foundation by ensuring schools and administrators have access to technology and software that is safe and secure right out of the box,” said CISA Director Jen Easterly.

Companies that sign the pledge are publicly agreeing to adopt three principles:

Take ownership of customer security outcomes
Embrace radical transparency and accountability
Lead from the top by making secure technology a key priority for company leadership

The pledge includes specific, publicly measurable outcomes that the companies are committing to as they develop their roadmaps toward adhering to Secure by Design principles.

ON DEMAND: Business-impacting events such as severe weather, man-made disasters, and supply chain disruption are increasing in frequency and making impacts around the globe.

In today's rapidly evolving security landscape, organizations face an ever-growing array of disruptive events, security threats and risks. Traditional reactive approaches to security intelligence often leave businesses vulnerable and ill-prepared to anticipate and mitigate emerging threats that could impact the safety of their people, facilities or operations.