The Multi-State Information Sharing and Analysis Center (MS-ISAC), a division of the Center for Internet Security (CIS), is the focal point for cyber threat prevention, protection, response, and recovery for the nation's state, local, tribal, and territorial (SLTT) governments.
Membership in MS-ISAC is FREE to public K-12 education entities.
To join MS-ISAC visit https://learn.cisecurity.org/ms-isac-registration.
Membership benefits include direct access to cybersecurity advisories and alerts, vulnerability assessments and incident response for entities experiencing a cyber threat, secure information sharing through the Homeland Security Information Network (HISN) portal, tabletop exercises, a weekly malicious domains/IP report, multiple DHS initiatives, CIS SecureSuite Membership, MS-ISAC National Webinar, and more.
Learn more about MS-ISAC Membership at https://www.cisecurity.org/ms-isac/services.
MS-ISAC K-12 Report - A Cybersecurity Assessment of the 2021-2022 School Year
The MS-ISAC operates within the SOC, which is a 24x7x365 joint security operation and analysis unit that monitors, analyzes, and responds to cyber incidents targeting SLTT entities. The SOC provides real-time network monitoring and notification, early cyber threat warnings and advisories, and vulnerability identification and mitigation.
You can contact the SOC directly by calling 866-787-4722 or emailing soc@cisecurity.org
After signing up with MS-ISAC, LEAs have access to the Cybersecurity and Infrastructure Security Agency (CISA) Cyber Hygiene (CYHY) service. This FREE service provides a weekly report of vulnerabilities found via an external network scan of addresses provided to CISA during program signup. Web Application scanning evaluates known and discovered publicly-accessible websites for potential bugs and weak configurations to provide recommendations for mitigating web application security risks.
To start the CISA Cyber Hygiene Service, make sure your LEA has already joined MS-ISAC, then send an eMail to vulnerability@cisa.dhs.gov with the subject line “Requesting Cyber Hygiene Services”.
PROTIP: Use a group email address or alias when signing up. This will allow an easier transition between staff or multi-individuals needing these reports.
NOTE: If the LEA uses a DNS-based web filter, it will most likely not be able to use this service.
The Malicious Domain Blocking and Reporting (MDBR) service is available at no cost to LEAs. It was designed in partnership with the Cybersecurity and Infrastructure Security Agency (CISA) and Akamai.
MDBR is a cloud-based solution that uses recursive DNS technology to prevent IT systems from connecting to harmful web domains, helping SLTTs limit infections related to known malware, ransomware, phishing, and other cyber threats. This capability can block the vast majority of ransomware infections by preventing the initial outreach to a ransomware delivery domain.
Use the following links for more information
The CISA K-12 School Security Guide provides a comprehensive doctrine and systems-based methodology to support schools in conducting vulnerability assessments and planning to implement layered physical security elements across K-12 districts and campuses. The primary focus will be on protection and mitigation measures, and strategies schools should consider in their broader school safety enterprise. The guide is designed and organized for local education agencies to employ in conjunction with the K-12 School Security Assessment Tool (SSAT), a web-based tool that provides further guidance on school physical security planning and implementation. Together, this guide and the companion tool outline action-oriented security practices and options for consideration across the K-12 school community.
For more information, please visit https://www.cisa.gov/k-12-school-security-guide.