Kathleen Moore reports:
Student data, including names, birth dates and addresses, are not always kept secure by school districts or the state Education Department, the state Comptroller’s Office found in an audit issued Tuesday.
The Education Department “has not taken the fundamental steps or improved the technical controls needed to secure its own critical systems,” the auditors said.
Auditors also went to four school districts and scanned their systems for vulnerabilities. What they found was so concerning that the districts took immediate action, they said.
Read more at Albany Times-Union.
h/t, Brett Callow
Notice how the state audit did not mention NYC? It remains outrageous that there is no audit and compliance with any reasonable audit of the city’s education department and schools for IT security for student data.
To see about two dozen individual district audits by the state over the past years that have been reported on DataBreaches, follow the links from this search.