Evelyn Davis
November 22, 2015
University of Maryland University College
EXECUTIVE SUMMARY
Pinellas County Schools is the seventh-largest in the state of Florida. The creation of Pinellas County Schools came to be after a split in 1912 from Hillsborough County. Pinellas County serves 150 schools including magnets schools, career academies, adult education centers and a virtual school program. Pinellas County Schools with the help of 7000 plus educators offers families a wealth of educational possibilities well-matched to students’ interests, talents, and abilities.
Pinellas County Schools collect and maintain data on students, faculty and staff who work within the school district. …show more content…
Introduction
Purpose
The core reason for this risk assessment is to recognize hazards and liabilities in relation to Pinellas County Schools. The risk assessment will be applied to recognize the severity of risk in relation to Pinellas County Schools I.T. (information technology) systems.
Scope of this risk assessment
The scale of this risk assessment covers a web-based application developed and maintained by Schoolwires Inc. for the school district. The objective is to gain an inclusive view of the website and then choose core areas for assessment. The pcsb.org/ website provides members of the community with school district updates, as well as a place for faculty to log in and view proprietary information. However; this risk assessment is projected to be beneficial for the 150 school that make up the district. Even though this risk assessment is for Pinellas County Schools, it can be custom fitted for other school districts, colleges or universities in the state depending on the size of an institution. The emphasis will be on the tools and resources that support electronic data (i.e. student information, teacher information) and related tasks.
II. Risk Assessment Approach
The …show more content…
(2006, February). Special Publication 800-18 REV 1: Guide For Developing Security Plans For Information Technology Systems. Retrieved October 30, 2015 from http://csrc.nist.gov/publications/nistpubs/800-18-Rev1/sp800-18-Rev1-final.pdf
NIST - National Institute of Standards and Technology. (2012, September). Special Publication
800-30 REV 1: Guide for Conducting Risk Assessments. Retrieved October 26, 2015 from http://csrc.nist.gov/publications/nistpubs/800-30-rev1/sp800_30_r1.pdf
Lestch, C. (n.d.). CYBERSECURITY IN K-12 EDUCATION: Schools face increased risk of cyber attacks - StateScoop. Retrieved October 31, 2015 from http://statescoop.com/cybersecurity-k-12-education-schools-face-increased-risk-c
Information Assurance. (2015, Oct 20). Retrieved from Iowa State University: http://www.iac.iastate.edu/
Meier, J. (2010, July 8). Cloud Security Threats and Countermeasures at a Glance. Retrieved from J.D. Meier's Blog: http://blogs.msdn.com/b/jmeier/archive/2010/07/08/cloud-security-threats-and-countermeasures-at-a-glance.aspx
NIST 800-30 Risk Assessment Report Template | Georgia Technology Authority. (n.d.). Retrieved from https://gta.georgia.gov/documents/nist-800-30-risk-assessment-report-template
Note: All of the sources were used to help with research, but only on was required to be