District data Governance team including LEA administrator,Tech Directors, Special Education Directors, Curriculum Directors, Cyber Security Specialists, PIMS administrators and Legal / Public Relations / communications staff and the usual suspects. Include your own IU people!
PDE Presenters / Participants
Deb Rodriguez, Julie Patton, Jamie Gerkin
8:30 - 8:55 [VC] Sound Check / Roll Call - Daniel Berger
8:55 - 9:00 [Local] Welcome - Local Facilitator
9:00 - 9:05 [Local] Welcome - Dan Berger
09:05 - 11:00 [VC] Data Breach Simulation - Baron Rodrigues and Mike Tassey PTAC
In today’s world it’s not IF you will be involved in a data breach, but WHEN. Please join Baron Rodriguez and Mike Tassey from the Privacy Technical Assistance Center (PTAC) as we conduct an interactive Data Breach Simulation. The Data Breach Exercise is a scenario based table top exercise which puts you and your team in the driver’s seat to deal with the twists, turns and confusion of picking up the pieces when it all goes wrong. This event is intended to provide an opportunity for the attendees to put themselves into the shoes of critical individuals within an organization that has just experienced a significant data breach. You will be divided into teams around the room. Your teams represent the core group of key people involved in the initial response to the breach. Bad guys may have your data, the clock is ticking, how do you respond?
In this exercise you will be divided into small teams and presented with information about a potential data breach in your organization. As the scenario unfolds, you will uncover more data about the events surrounding the breach and be thrust into the limelight to react to the press, give public statements to the press and navigate the many hurdles of incident management. Your team must discover the important facts, manage the crisis and develop the following:
Response Plan – outline how your agency will approach the scenario and what resources you would mobilize. Describe who within the agency would comprise your response team and identify goals and a timeline for response activities.
Public & Internal Communications / Messaging – develop the message you would deliver to your partners, customers, students & parents, the media, and the public.
Example Press Release created during the Breach simulation from IU29
This is notification that the Mahanoy Area/Williams Valley Student Information System has been compromised. At this time, because of the ongoing investigation, we are unable to share specific information but would advise parents to be proactive and report any suspicious activity involving personal data. Please be assured that the proper authorities have been notified and are working closely with us. An update will be provided as more information becomes available.
Because it is an ongoing investigation we feel it is important to notify those people that we know have been directly affected before we release more information.
11:00 - 11:15 Break
11:15 - 11:55 [VC] Panel Discussion on Enrollment codes with Q and A
Please submit your questions ahead of time using the following link: