1. Home
  2. Academics
  3. Learning Support
  4. Technology Planning

K-12 Cybersecurity Initiative

Overview

What is the K-12 Cybersecurity Initiative?

In response to the increasing threat of ransomware and other malicious cyber activity targeting school systems across Texas, the 榴莲视屏 (榴莲视屏) launched the K-12 Cybersecurity Initiative in 2023. The initiative was made possible through funding approved by the 88th Texas Legislature, which supported 榴莲视屏鈥檚 request for dedicated cybersecurity resources to help school systems strengthen their defenses and respond to emerging cyber risks. 

The program officially started on September 1, 2023, and was initially funded through the FY24/FY25 biennium (September 2023鈥揂ugust 2025). We are pleased to share that the 89th Texas Legislature has approved an additional $42 million in funding for the FY26/FY27 biennium (September 2025鈥揂ugust 2027), ensuring the continuation and expansion of this critical initiative. Remaining funds from FY24/FY25 have also been transferred forward to support ongoing efforts.

The goal of the initiative is to deliver immediate, practical solutions to help LEAs defend against major cyber incidents, such as ransomware attacks. Priority is given to rural school systems, and cybersecurity practitioners are available through regional education service centers to support the implementation of cybersecurity controls aligned with the scope of this initiative.

Biennial Funding Updates

FY24/FY25

  • The program officially launched on September 1, 2023, with funding provided through the FY24/FY25 biennium (September 2023鈥揂ugust 2025).

FY26/FY27

  • The Texas legislature has approved $42M for the continuation of this initiative in 榴莲视屏鈥檚 FY26/FY27 budget (September 2025鈥揂ugust 2027). Remaining funds from FY24/FY25 have been carried forward.

Future Projections

  • Updates will be provided as additional funding decisions are made in future legislative sessions.

All school systems are strongly encouraged to implement the following cybersecurity controls, which fall within the scope of the K-12 Cybersecurity Initiative, between September 1, 2023, and August 31, 2025: 

  • Implement fully managed Endpoint Detection and Response (EDR) on school system servers and applicable staff devices. 
    榴莲视屏 will fully fund licenses with limited distribution. See details below.
  • Implement Multi-Factor Authentication (MFA) for staff email systems.
  • Ensure DMARC Compliance to enhance protection against phishing and spoofing.
  • Restrict local administrator access to minimize the risk of unauthorized system changes.
  • Complete a Texas Cybersecurity Framework (TCF) assessment to get a baseline for your cybersecurity program and action plan for improving your maturity.
    • TCF assessment is provided on a first-come, first-served basis by 榴莲视屏 through the Department of Information Resources (DIR) program.
  • Implement Network Detection and Response (NDR).
    • The NDR Pilot is paused to new customers as we evaluate current participation and future capacity.

For FY26鈥揊Y27, the Texas State Legislature has approved an additional $42 million to continue advancing the K鈥12 Cybersecurity Initiative. These funds will support the following key efforts:

  • Expansion of Managed EDR Services
    • Continued support for the current managed EDR offering, with a focus on increasing adoption among additional school systems.
  • Ongoing TCF Assessments
    • Continued funding for additional TCF assessments through DIR Managed Security Services (MSS).
  • Continued Support for Education Service Centers (ESCs)
    • Additional funding to enable ESCs to provide technical assistance to their school systems in support of the K-12 Cybersecurity Initiative. K-12 Cybersecurity ESC Contacts
  • Implementation of Additional Security Controls
    • Support for additional security controls at each school system to further strengthen cybersecurity maturity across the state.

New Initiatives for FY26-FY27

  • Implement Cloud Email Security
    • Service provided in partnership with the University of Texas Regional Security Operations Center (UT-RSOC).
  • DIR Certified Security Awareness Training and Phishing Simulations
    • Provided in collaboration with the Technology Alliance for Statewide Initiatives (TASI).
  • Microsoft365 & Google Workspace Hardening Guides
    • Guides under development by TASI.
  • Software Deployment Solution for rollout of EDR agents and other software.
    • Software available through TASI partnership. 

How much money was appropriated for the K-12 Cybersecurity Initiative?

The Texas State Legislature initially appropriated $55M to support the K-12 Cybersecurity Initiative and an additional $42M for FY26/FY27.  From the legislative entry into the budget: 

It is the intent of the Legislature that the 榴莲视屏 enter into an interagency agreement with the Department of Information Resources (DIR) to provide cybersecurity services for school systems in accordance with DIR Strategy C.1.2, Security Services. Cybersecurity services to be provided by DIR may include but are not limited to, cybersecurity assessments, endpoint detection response, and network detection response.

Funded Service TypeAvailability ScopeStatus
Cybersecurity technical assistance provided by ESCsAll school systemsAs offered per ESC
榴莲视屏-funded third-party cybersecurity assessmentsAvailable to all school systems. First come, first servedRequest through STS Portal
榴莲视屏-funded Endpoint Detection & Response (EDR) subscriptions Prioritized for small & midsize school systems. First come, first servedRequest through STS Portal
NDR phase 1 pilot program is now closedPilot group of school systems Evaluate pilot participants to determine next steps

Program Scope*

INTER-LOCAL CONTRACT WITH DIR SHARED TECHNOLOGY SERVICES (STS) REQUIRED

School systems will need to sign DIR鈥檚 inter-local contract to receive the in-scope services from DIR鈥檚 STS, Managed Security Services (MSS) program. Our goal is to have all eligible school systems onboarded with a signed inter-local contract so the services can be distributed as soon as possible. After the inter-local contract is in place, eligible school systems may then request in-scope services through the STS program, which will be paid for by 榴莲视屏. The MSS vendor or your regional education service center may reach out to your school system to help facilitate this process. Details about this process were discussed in the .

LIMITED DISTRIBUTION OF EDR PER SCHOOL SYSTEM ENROLLMENT

It is 榴莲视屏鈥檚 intention to focus on small and rural school systems for the distribution of EDR services through DIR鈥檚 MSS. The EDR provided, which replaces traditional anti-virus software and incorporates threat intelligence along with malicious behavior characteristics on endpoints, will be fully managed to eliminate additional school system overhead and is one of the best solutions to prevent ransomware and secure devices. The current vendors under the MSS contract for EDR are CrowdStrike and SentinelOne. To provide a scope that we can reasonably accommodate with the funding provided, 榴莲视屏 will limit the distribution to school systems with a total enrollment of 50,000 and below, with a range from 30 licenses up to licenses equal to 30% of student enrollment, whichever is larger.  It is 榴莲视屏鈥檚 intent to focus on high-risk and high-impact devices, so initial distribution should focus on servers and central office staff with any remaining licenses distributed to other staff devices that have access to sensitive data.

TEXAS CYBERSECURITY FRAMEWORK ASSESSMENT

Cybersecurity assessments will also be available to school systems as part of this initiative and will also be provided by the MSS vendor through DIR鈥檚 services catalog.  The intent of these assessments is to provide a high-level look at the overall state of cybersecurity in Texas鈥 K-12 public entities. 榴莲视屏 will not receive detailed copies of reports for any individual school system. 榴莲视屏 will only receive an aggregate report of the assessments. Refer to the TX K12 Cybersecurity Assessment Quick Start Guide for details on how to request a Cybersecurity Assessment for your district.

*The program scope is subject to change in order to achieve initiative goals. Initiative implementation details are still in development. 榴莲视屏 will provide updates through Cybersecurity Coordinator Forum webinars and this site.

Steps to Onboarding School Systems to the Texas Department of Information Resources (DIR) STS Portal and the K12 Initiative: 

  1. The DIR Onboard process begins when the school system returns the to DIR.
  2. The school system will need to sign DIR鈥檚 InterLocal Contract (ILC) to receive the in-scope services from DIR鈥檚 (STS), Managed Security Services (MSS) program.  This will be sent to the InterAgency Contact (IAC) on page 1 of the New Customer Information Form for their review and signature.
  3. Onboard to the STS portal 鈥 this portal allows your entity to make requests for services, review proposed services and review any associated costs with those services. This will be sent to the Service Operations Contact on Page 1 of the New Customer Information Form.
  4. When DIR has finalized the signature process on the ILC and returns it to the school system, the school system will receive a 鈥淲elcome Aboard鈥 email from DIR, and school system can put in a request for service.
  5. Log in to the to request 榴莲视屏-funded EDR and School District Cybersecurity Assessment through DIR鈥檚 contracted MSS provider.

Note: All onboarding emails will come from STS System Message <txdir@servicenowservices.com>. Please make sure to whitelist this domain.

Resources

Webinars & Slide Decks

You may register for the using your school system email address. 

Other Resources

 

 

  Print
Contact Information

For more information contact:

Texas Department of Information Resources CISO Office at DIRSecurity@dir.texas.gov

榴莲视屏 Cybersecurity team Cybersecurity@tea.texas.gov