Cyber Governance Conference
Beyond the Breach
Lake Shore Cyber Governance Summit • Buffalo, NY
NIST 2.0 Shift
Districts must move from passive compliance to active accountability by September 2026. Governance is now a central organizational mission.
"Need to Know"
Under EdLaw 2-d and the SHIELD Act, accessing PII without a specific role-based requirement is considered a disclosure event.
Manual Controls
Transitioning vendors to Voice Verification remains the only 100% effective manual control against payment fraud and BEC.
A Culture of Readiness
On May 1, 2026, Lake Shore Central School District brought together Superintendents and Data leaders to stress-test our regional defenses. Cybersecurity is no longer an I.T. silo—it is a matter of district governance and continuity.
Immediate Action Items
Risk Register Development
Every district should document known vulnerabilities to prioritize remediation funds for the 2026-27 budget.
NIST CSF 2.0 Update
Review and update Policy 5676 to reflect the new "Govern" function before the September term begins.
DHS Rapid Assessment
Highly recommended for all regional districts to contact DHS for a free security review of digital infrastructure.
Role-Based Training
Move beyond generic compliance videos. Focus on specific training for Business Office and Special Education staff.
Michelle Krieger
District Data Protection Officer (DPO)
"Data privacy is an organizational mission, not just an I.T. task. At Lake Shore, we are committed to being rooted in tradition and ready for the future of student safety."
© 2026 LAKE SHORE CENTRAL SCHOOL DISTRICT. ALL RIGHTS RESERVED.