| Event Details | Date & Time | Capacity | Categories |
|---|---|---|---|
|
Tech Advisory Committee Meeting - Rooms A and B
Tech Advisory Committee Meeting - Rooms A and B
|
October 2, 2025
9:00 AM
-
11:00 AM
ET
|
80 |
Technical Services
|
|
Ohio Cyber Reserve Training Session 3
* Session #3 – Vulnerability Management Detection & Analysis
* In this session, the OhCR team will take your school district through the Vulnerability Management (VM) Plan as well as expand your understanding of the VM process. We will examine the CISA Cyber Hygiene Program as well as placing a tap inside your network. We will review Windows server and Google Workspace log analysis and threshold settings. We will look at both open source and professional VM tools and their reports.
* Vulnerability Management Policy TEMPLATE exercise
* Sign up and use the CISA External Looking Cyber Hygiene Service with NMAP and NESSUS
* Acquire Tap, Install, and Collect Data inside the Network Exercise
* Log Analysis and Thresholds Setting Exercise
* SIEM Software Selection and Basic Training Syllabus Exercise
* Elevating an Event to an IR Incident Process
|
October 7, 2025
9:00 AM
-
12:00 PM
ET
|
— |
Technical Services
|
|
Ohio Cyber Reserve Training Session 4&5
* Session #4&5 – Organization Third-Party Access Control Training Exercise & Network Systems Control
* Organization Third-Party Access Control Training Exercise & Network Systems Control
1. In this session, the OhCR team and you will examine the journey to NIST Cybersecurity Compliance to meet your contractual obligations and Board policies. Our training will focus on Access Control in your School District that protects student, teacher, and staff data using processes, and decision-making exercises. Are you trying to protect everything but risking critical data? The OhCR and you will learn to identify the critical data and those who access it, to reduce your attack surface. Together, the OhCR and you will expand into the Cloud space and supply chain to assure that your vendors are also compliant. You will finish the seminar with a robust look at the districtwide Cyber Security Awareness training program.
1. NIST and Data Security Training and your Policies
2. Access Control Process Template and Exercise
3. Identify Critical Staff for Access Control Exercise
4. Supplier Control Process
5. Vendor Data Privacy Control Make and Take
6. Security Awareness Training Exercise
* Network Systems Control
* In this session, you improve your inventory control by identifying assets as critical and non-critical. You and your team will work with School District leaders to create your data flows to identify all PII, PHI and PFI storage, locally and on the cloud. The OhCR, you and your team will build system design and maintenance skills to promote data security and efficiency. You will finish the seminar with a plan to sustain your Cybersecurity Framework.
* Identify Asset Inventory and Categorization Exercise
* How to Make a Data Flow Exercise
* Business Critical and Non-Critical Systems Exercise
* Developing Organizational Standards for Systems Architecture
* Information Technology System Maintenance Plan
* A CSF Sustainment Plan that Works
|
October 21, 2025
9:00 AM
-
12:00 PM
ET
|
— |
Technical Services
|