Zero Breach Zone

Andy Lombardo & Phil Hintz
  • 5,0 (2)
  • ТЕХНОЛОГИИ
  • КАЖДЫЕ ДВЕ НЕДЕЛИ

Welcome to the "Zero Breach Zone," where we delve into the vital mission of fortifying K-12 schools against breaches and phishing threats. Hosts Andy Lombardo and Phil Hintz lead insightful conversations with top experts in cybersecurity, education, and technology, uncovering strategies to protect our schools. From breaking down the latest digital threats to sharing actionable security measures, this podcast empowers educators, administrators, and parents with the tools they need to safeguard students and staff in today’s connected world.

  1. Knowing Is Half the Battle... The Other Half Is Cybersecurity Funding for Schools (Re-Air)

    02.12.2025

    Knowing Is Half the Battle... The Other Half Is Cybersecurity Funding for Schools (Re-Air)

    Welcome to episode 15 of the Zero Breach Zone podcast, where hosts Phil Hintz and Andy Lombardo discuss their experiences at recent conferences, focusing on cybersecurity strategies in K-12 education. They explore the importance of multi-factor authentication (MFA), the challenges of session timeouts, and the need for continuous improvement in cybersecurity practices. The conversation also highlights the significance of tabletop exercises for incident response and the convergence of physical and cybersecurity measures in schools. The hosts share insights on integrating technology for safety and the necessity of collaboration among various stakeholders. In this conversation, Andy Lombardo and Phil Hintz discuss various aspects of school security, including the importance of enhancing physical security measures, leveraging CISA for audits, and the role of AI in education. They emphasize the need for collaboration and networking within the EdTech community, as well as advocating for increased cybersecurity funding to protect K-12 institutions. The discussion ends with highlighting the significance of engaging with Congress to address these pressing issues and the helpful resources prepared by CoSN to do so. Key Takeaways: MFA is essential but requires ongoing adjustments & MFA should extend to social media accountsSession timeouts can pose risks if not managed properlyTabletop exercises help prepare for incidentsConvergence of physical and cyber security is crucialStakeholder collaboration is key in incident responseContinuous learning from conferences is invaluableK-12 cybersecurity threats are rising and we need your voiceCybersecurity is a bipartisan issue with real-world consequencesParting Tool: Help your district to become a Zero Breach Zone -Urge Congress to Protect and Invest in Cybersecurity Support for Schools-  through the CoSN prepared resources:https://cosn.quorum.us/campaign/115693/ Resources Mentioned  Evil Jinx: https://github.com/kgretzky/evilginx2Chapters 00:00 Spring Reflections and Conference Recap 03:08 Cybersecurity Strategies and MFA Insights 06:01 Real-World Cybersecurity Challenges 09:06 Tabletop Exercises and Incident Response 12:00 Convergence of Physical and Cybersecurity 14:57 Integrating Technology for Safety 19:12 Enhancing School Security Measures 20:50 Leveraging CISA for Security Audits 22:34 Insights from K-12 Conferences 23:32 AI in Education: Opportunities and Challenges 26:33 Networking and Collaboration in EdTech 31:46 Advocating for Cybersecurity Funding 39:21 Call to Action: Engage with Congress

    37 мин.
  2. Ransomware Rising: Confronting the K-12 Cybersecurity Crisis (Re-Air)

    18.11.2025

    Ransomware Rising: Confronting the K-12 Cybersecurity Crisis (Re-Air)

    Welcome to episode 14 of the Zero Breach Zone, in this episode hosts Phil Hintz and Andy Lombardo dive into the current state of K-12 cybersecurity, analyzing key findings from the Cisco Talos 2024 report. They explore the concerning rise in ransomware attacks targeting educational institutions, the struggles schools face with limited security budgets, and practical strategies for strengthening cyber defenses. The conversation covers the critical importance of regular system monitoring, vulnerability patching, and addressing MFA weaknesses that leave schools exposed. Phil and Andy emphasize that human factors remain one of the biggest security challenges, highlighting how effective security awareness training can significantly reduce risk when implemented thoughtfully. The discussion also examines the growing relevance of zero trust architecture and how phishing attacks continue to be cybercriminals' preferred entry point to school systems. Throughout the episode, they stress that despite being perceived as low-value targets, K-12 schools are increasingly in cybercriminals' crosshairs, making collaboration among education cybersecurity professionals more important than ever. Key Takeaways: K-12 education is increasingly targeted by cybercriminals despite being perceived as low-valueEducational institutions now lead in ransomware attacks, with incidents peaking during school breaksBudget constraints severely limit cybersecurity initiatives in schoolsFundamental security practices are critical: regular monitoring, patching systems, and addressing MFA vulnerabilitiesSecurity awareness training delivers strong ROI when implemented effectivelyEmail security and phishing prevention remain essential first-line defensesCreating a culture of cyber awareness among all staff is fundamental to protectionZero trust architecture and data-driven security decisions are becoming increasingly importantCollaboration among education cybersecurity professionals is vital for improving collective defenseProactive measures and basic cyber hygiene significantly reduce exposure to attacksResources Mentioned:- Cisco Talos 2024 Cybersecurity Report- CyberNut Security Awareness Training for K-12- cosn.quorum.us/campaign/115693/- Parting Tool: Rust Desk as a fee alternative to TeamViewer on Andy's Blog EdTechIrl  (@edtechirl on substack) Chapters 00:00 Introduction to K-12 Cybersecurity 02:49 Insights from Cisco Talos 2024 Report 06:04 Understanding the Target: K-12 Education 08:56 Challenges in Cybersecurity Funding 11:57 The Importance of Regular Monitoring and Patching 15:02 Security Awareness and Human Factors in Cybersecurity 20:19 Navigating Email Security Challenges 23:22 Building a Culture of Cyber Awareness 25:14 Understanding Spoofing and Phishing Attacks 27:31 Ransomware Trends and Threats 30:12 The Rise of Ransomware as a Service 39:56 Proactive Measures Against Ransomware 43:35 Remote Access Solutions for Security

    42 мин.
  3. Building Strong EdTech Partnerships & Creating a Cybersecurity Culture in Schools with Jeff McCoy | FETC 2025 Series (Re-Air)

    04.11.2025

    Building Strong EdTech Partnerships & Creating a Cybersecurity Culture in Schools with Jeff McCoy | FETC 2025 Series (Re-Air)

    Welcome to episode 13 of the Zero Breach Zone! In this episode hosts Phil Hintz and Andy Lombardo speak with Jeff McCoy, Associate Superintendent for Academics in Greenville County, South Carolina. Drawing from his 25+ years in education, Jeff discusses the integration of technology in schools, emphasizing the distinction between vendors and solution partners. The conversation highlights cybersecurity as a shared responsibility across all departments, not just technology. Jeff stresses that security training should be continuous rather than annual, using short, clear communications. The discussion covers how data breaches often involve academic software, the importance of evaluating vendors' security practices, and the need for transparency with AI implementation in education. Jeff emphasizes that technology should ultimately enhance teaching and learning, requiring proper change management and cross-departmental collaboration. As this weeks Parting Tool, Jeff highlights the crucial role of 1EdTech, a global non-profit that develops open standards to reduce complexity, accelerate innovation, and expand educational possibilities worldwide. Key Takeaways:- Cybersecurity is a shared responsibility across all departments, not just technology- Distinguish between vendors (who sell products) and solution partners (who address needs)- Cybersecurity training should be continuous, using short, clear communications- Data breaches frequently involve academic software, not just administrative systems- Multi-factor authentication is essential for protecting school systems- Vendors must be evaluated for their cybersecurity practices and certifications- AI in education requires transparency about data usage and privacy- Technology should enhance teaching and learning, not complicate it- 1EdTech provides valuable resources for vetting educational apps Resources Mentioned:- Multi-factor authentication solutions- Greenville County Schools' cybersecurity protocols- Educational technology evaluation frameworks- Parting Tool: 1EdTech for vetting educational applications

    15 мин.
  4. Energizing EdTech with Michelle Krieger: A Dynamic Conversation on School Cybersecurity | FETC 2025 Series (Re-Air)

    21.10.2025

    Energizing EdTech with Michelle Krieger: A Dynamic Conversation on School Cybersecurity | FETC 2025 Series (Re-Air)

    Welcome to episode 12 of the Zero Breach Zone! Join hosts Phil Hintz and Andy Lombardo as they sit down with Michelle Krieger to explore topics top of mind at the intersection of education and cybersecurity recorded at FETC. In this energetic conversation, Michelle shares her unique journey from Special Education Teacher to Education Innovation to Data Protection Officer, to Director of Technology. Michelle offers valuable insights on the importance of data protection in increasingly digital learning environments. The discussion delves into crucial aspects of differentiating between Director of Technology and data protection officer roles. Everyone emphasizes the importance of "secure by design" principles, sharing examples of how schools can implement data privacy practices from the ground up rather than as afterthoughts. Drawing from her classroom experience, Michelle shares stories about working with students of all ages on online safety, from using a baking metaphor with elementary school kids to discussing deep fakes with high schoolers. Michelle's practical approach to making security concepts accessible to both educators and students resonated throughout the conversation, particularly when discussing the balance between technological innovation and responsible data stewardship. This episode is a must listen to all interested in edtech and cybersecurity! Key Takeaways The critical importance of data protection and cybersecurity in educational settings Challenges of implementing technology in schools while maintaining privacy Necessity of tailored cybersecurity training for educational staff and all school employees (from teachers to bus drivers)Proactive approaches to protecting student data and retention evaluationStrategies for engaging students in cybersecurity education from elementary to high schoolBuilding effective collaboration between educators and technology providers The evolving landscape of data privacy practices in educationResources Mentioned:  Secure by Design & SISData Guard by ClassLink Antoinette King's book, The Digital Citizen's Guide to CybersecurityThe Cybersecurity RubricParting Tool: Explaining to your Superintendent or School Board the difference between the role of Director of Technology & Data Protection Officer

    31 мин.
  5. From Crisis to Innovation: Lessons in Educational Cybersecurity with Scott Bailey | FETC 2025 Series (Re-Air)

    07.10.2025

    From Crisis to Innovation: Lessons in Educational Cybersecurity with Scott Bailey | FETC 2025 Series (Re-Air)

    Welcome to episode 11 of the Zero Breach Zone! Join us for an enlightening conversation with  Scott Bailey, former superintendent and educational innovator from Desert Sands School District. Through his engaging storytelling, Bailey shares candid experiences from his work across Nevada's largest school districts, including Clark County School District with 314,000 students and Washoe County School District serving the Reno-Tahoe area. His firsthand account of managing the initial COVID-19 outbreak and spearheading the rapid transition to online learning provides valuable insights into crisis management at scale. Drawing from his extensive background in education leadership, Bailey addresses the evolving landscape of digital security in schools with a refreshing mix of wisdom and practical experience. His approach to balancing technological advancement with student safety, coupled with his deep understanding of crisis response planning, demonstrates why he's become a respected voice in educational cybersecurity. Through real-world examples and lessons learned, his emphasis on the crucial partnership between educational leaders and technology officers provides a blueprint for creating secure, innovative learning environments. Key Takeaways The fundamental importance of student connectivity for educational equityEssential elements of cybersecurity implementation in educational settingsBuilding effective crisis response strategies through proactive planningDeveloping comprehensive security frameworks that address both physical and cyber threatsThe critical role of relationship-building in addressing cybersecurity challengesImplementing effective tabletop exercises for cybersecurity scenariosStrategic approaches to protecting student data privacyCreating sustainable innovative practices while maintaining securityThe importance of holistic safety planning in educational environmentsMethods for assessing and improving institutional cybersecurity postureStrategies for effective communication during security incidentsBalancing technological advancement with security requirementsResources Mentioned Educational Institution Crisis Response FrameworkStudent Data Privacy Compliance ResourcesDigital Equity Implementation ToolkitCybersecurity Assessment Guidelines for SchoolsParting Tool: TriVigil Security Assessment Platform for Education #EdTech #Cybersecurity #EducationalLeadership #SchoolSafety #DigitalEquity #StudentPrivacy #CrisisResponse #SecurityPlanning

    29 мин.

  6. 23.09.2025

    Building a Culture of Cybersecurity in K-12 with Itza White, Director of Cybersecurity at Five Star

    Welcome to episode 21 of Zero Breach Zone! In this hosts Andy Lombardo and Phil Hintz welcome Itza White, the Director of Cybersecurity for Five Star. The group discusses the unique challenges of cybersecurity in K-12 education, the importance of documentation, and building a culture of security awareness. Itza shares her journey into cybersecurity, two big challenges schools face including the rising significance of cyber insurance, and the need for effective incident response plans. The conversation also highlights the importance of empowering women and girls in technology and the resources available for schools to enhance their cybersecurity posture.   Key Takeaways  Cybersecurity in K-12 requires special considerations. Documentation is crucial for effective cybersecurity practices. Everyone in a school is part of the security team. Cyber insurance requirements are constantly evolving. Building a culture of security awareness is essential. Training can often be done at low cost. Incident response plans should be tested regularly. Partnerships with cybersecurity firms can provide valuable resources. Empowering women in technology is important for the industry's development.Resources Mentioned  Parting Tool: Five Star's Cyber Incident's Readiness Check - a free 20 questions tool for assessing cybersecurity readiness

    25 мин.
  7. When Disruption Disrupts Itself: Dr. Joe Phillips on AI, Safety, & the Accelerating Pace of EdTech | FETC 2025 Series (Re-Air)

    09.09.2025

    When Disruption Disrupts Itself: Dr. Joe Phillips on AI, Safety, & the Accelerating Pace of EdTech | FETC 2025 Series (Re-Air)

    Welcome to episode 10 of Zero Breach Zone! Join us for our continued FETC 2025 coverage featuring Dr. Joe Phillips, CTO of Fulton County Schools. In this insightful conversation recorded live at the conference, Dr. Phillips draws from his unique background in both education and military service to address the complex challenges facing large school districts. Beyond introducing his innovative PLANT AI model, he shares a compelling perspective on how Moore's Law has given way to an era where technological disruption is actually accelerating the pace of disruption itself. His deep understanding of AI's transformative potential, coupled with his measured approach to implementation, showcases why he's become a leading voice in educational AI awareness. As the host of the newly launched 'Safe and Innovative Schools' podcast, Dr. Phillips brings a fresh perspective on balancing innovation with security in modern educational environments. Key Takeaways  The distinctive challenges of implementing innovation in large school districts Critical considerations for K-12 cybersecurity and data privacy Understanding and implementing the PLANT AI model for education How technological disruption is accelerating beyond Moore's Law predictionsStrategies for developing structured technology approval processes How AI can address resource limitations in education Benefits of a layered approach to school safety 'Swiss Cheese Appraoch'The importance of responsible AI awareness in education Evolution of data privacy agreements in the AI eraThe critical role of educational leaders in guiding AI integration Military insights applied to educational technology Practical implementation of innovative security measuresResources Mentioned FETC Conference 2025 Resources PLANT AI Model by Joe Phillips 'Safe and Innovative Schools' Podcast by Joe Phillips K-12 Cybersecurity Framework Data Privacy Agreement Insights for App approvals - FERPA/ COBA Parting Tool: Microsoft Co-Pilot for use in K-12 #FETC2025 #EdTech #Cybersecurity #Education #SchoolSafety #AI #TechDisruption #AIAwareness

    31 мин.

  8. 26.08.2025

    E-Rate’s Future and Cybersecurity Funding for Schools with Mindy Fiscus

    Welcome to episode 20 of Zero Breach Zone! Hosts Andy Lombardo and Phil Hintz sit down with Mindy Fiscus, a 25+ year veteran in the world of education technology and the Director of Government Affairs & E-Rate at the Learning Technology Center of Illinois. Mindy brings a wealth of experience and passion to the conversation, sharing her journey through the evolving EdTech landscape and the pivotal role that E-Rate has played in connecting classrooms across the country.Together, they unpack the future of E-Rate amidst legal challenges, the urgent need for cybersecurity funding in K-12 schools, and how Illinois has emerged as a leader in the federal cybersecurity pilot program. Beyond funding and policy, Mindy emphasizes the power of collaboration within the EdTech community, the growing movement to empower women in IT, and the critical importance of advocacy to ensure schools have the resources needed to protect students and advance learning.Whether you’re an IT professional, school leader, or advocate for equitable access to technology, this episode offers both inspiration and practical tips for navigating the E-Rate process, engaging your community, and shaping the future of education technology. Key Takeaways:• Mindy Fiscus brings over 25 years of expertise in EdTech and advocacy• E-Rate remains essential for building and sustaining classroom connectivity• Cybersecurity funding is now a top priority for K-12 schools• Illinois leads in projects under the new cybersecurity pilot program• Collaboration among educators, IT leaders, and policymakers drives success• Women in IT are advancing through networking and empowerment initiatives• Advocacy is vital to secure resources and expand E-Rate opportunities• E-Rate consultants and resources can help schools maximize funding• Understanding the history of E-Rate strengthens future applications• Community engagement is key to effective EdTech implementation Resources Mentioned:• Learning Technology Center of Illinois (LTC)• E-Rate Program Documentation & Resources (see parting tools)• Parting Tool 1: E-Rate Central provides a comprehensive range of information and consulting services about the E-Rate program and E-Rate funding opportunities• Parting Tool 2: Funds For Learning helps you navigate the E-rate funding process, & provides articles + support  Chapters:00:00 – Introduction to the Zero Breach Zone Podcast06:05 – The Cybersecurity Pilot Program12:09 – E-Rate Legitimacy and Future Concerns20:11 – Ensuring Student Safety in Technology Integration26:55 – Empowering Women in Technology34:39 – E-Rate Insights and Resources

    38 мин.
См. все (33)

Трейлер

Оценки и отзывы

5
из 5
Оценок: 2

Об этом подкасте

Welcome to the "Zero Breach Zone," where we delve into the vital mission of fortifying K-12 schools against breaches and phishing threats. Hosts Andy Lombardo and Phil Hintz lead insightful conversations with top experts in cybersecurity, education, and technology, uncovering strategies to protect our schools. From breaking down the latest digital threats to sharing actionable security measures, this podcast empowers educators, administrators, and parents with the tools they need to safeguard students and staff in today’s connected world.

Информация

  • Автор
    Andy Lombardo & Phil Hintz
  • Годы выхода
    2024 - 2025
  • Выпуски
    33
  • Ограничения
    Без ненормативной лексики
  • Авторские права
    © 2025 Andy Lombardo & Phil Hintz