Jun 11 2025
Security

K–12 Leaders Evaluate Funding and Cybersecurity Challenges

New CoSN research reveals school IT leaders’ thoughts on popular education topics.
Editor Amy McIntosh
by

Amy McIntosh is the managing editor of EdTech: Focus on Higher Education and EdTech: Focus on K–12.

CoSN’s 2025 State of EdTech District Leadership report offers insights on digital connectivity, artificial intelligence, cybersecurity and other strategic initiatives that K–12 IT leaders are embarking on.

“This year’s survey reveals a defining moment for K–12 education,” said CoSN CEO Keith Krueger in a news release from the organization. “Digital infrastructure is now the backbone of teaching, learning and school operations — and edtech leaders are the architects holding it all together. District leaders and policymakers must act now to sustain the infrastructure and talent that keep learning accessible for all, secure and future ready.”

When it comes to cybersecurity, district ed tech leaders shared how they’re spending their money and what they perceive to be threats.

Click the banner to explore cybersecurity trends and challenges in education.

na-prrcloud-static-2024-na-desktop na-prrcloud-static-2024-na-mobile

 

Schools Spend Available Funds Strategically

The report indicated that most school districts do not have funding dedicated to cybersecurity, with 61% of respondents using general funds to pay for cybersecurity efforts. A majority of districts (78%) are investing in monitoring, detection and response solutions, with 65% investing in endpoint protection. Additionally, 71% of respondents reported a change to their cyber insurance policies in the past year, with 59% experiencing an increase in premiums.

 K–12 IT security teams are notoriously understaffed, which could explain why 44% of districts are outsourcing cybersecurity monitoring — the most commonly outsourced IT function.

RELATED: What do managed security services look like in education?

K–12 Threats Include Phishing and Ransomware Risks

Report authors suggest that because of these investments, ed tech leaders might be less likely to perceive threats as high risk. Respondents’ biggest concern is phishing, with 27% seeing it as a high-risk threat. Ransomware attacks and unauthorized disclosure of student data were seen as the next highest risks by 13% of respondents.

The report notes that despite leaders’ perceptions, risks are still high across the board for K–12 districts, particularly as federal funding cuts and policy changes impact the sector.

Research Reveals Cybersecurity’s Missing Links

In the 2024 CDW Cybersecurity Research Report, respondents from the education sector were asked to identify the gaps in their approach to cybersecurity. Here are their top four responses:

  • 38% - Insufficient understanding of staffing needs
  • 36% - Insufficient or ineffective employee training for cybersecurity
  • 34% - Insufficient budgetary resources
  • 31% - Incomplete understanding of how AI affects security
Luisa Jung/Theispot

More On

Related Articles

Close

New AI Research From CDW

See how IT leaders are tackling AI opportunities and challenges.

Click Here to Read the Report