2025DPSS: Full Schedule

Add sessions to your personal schedule to register your attendance (Check-In).

arrow_back View All Dates

10:00am EDT

Registration

Wednesday March 26, 2025 10:00am - 10:30am EDT

Grand Ballroom

Wednesday March 26, 2025 10:00am - 10:30am EDT
Grand Ballroom Albany Marriott - 189 Wolf Rd, Albany, NY 12205

General

10:30am EDT

Welcome & Introductions

Wednesday March 26, 2025 10:30am - 11:00am EDT

Grand Ballroom

Wednesday March 26, 2025 10:30am - 11:00am EDT
Grand Ballroom Albany Marriott - 189 Wolf Rd, Albany, NY 12205

General

11:00am EDT

How Bad Could It Be? Lessons Learned From the Largest Coordinated Attack Against Local Government in Us History, Keynote With Andy Bennett

Wednesday March 26, 2025 11:00am - 12:00pm EDT

Grand Ballroom

So, how bad could it be? This engaging keynote session will cover the ins and outs of the August 2019 ransomware attack that impacted 23 local government entities across the state of Texas. The Lone Star State responded in kind by activating the statewide incident response plan, which had been developed over the prior two years and spot-tested across a number of other incidents and exercises.

You will hear the good, the bad, and the ugly on how the plan worked and how it was able to clean up this large-scale incident and get operations restored across the board in just 8 days for under $300,000, without paying any ransom. The takeaways will go beyond just what it’s like to respond to a large incident and will show how taking a holistic approach to security enables an organization to not just be more resilient but be better and more effective across the board.

Wednesday March 26, 2025 11:00am - 12:00pm EDT
Grand Ballroom Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Keynote

12:00pm EDT

Little Italy Hot Lunch Buffet and Sponsor Exhibitions

Wednesday March 26, 2025 12:00pm - 1:00pm EDT

Grand Ballroom

Wednesday March 26, 2025 12:00pm - 1:00pm EDT
Grand Ballroom Albany Marriott - 189 Wolf Rd, Albany, NY 12205

General

1:00pm EDT

How to be a Rock Star DPO!

Wednesday March 26, 2025 1:00pm - 1:45pm EDT

Troy Room

Learn how to be a “Rock Star DPO” for your district. The session will cover Ed Law 2-d Part 121 best practices and the steps DPOs can take to earn “Rock Star” status. The audience for this session can include newly appointed DPOs or DPOs that would like a refresher.

RIC One DPSS Representative

Barbara Deal

Program Specialist I, Nassau BOCES

Barbara Deal currently works at Nassau BOCES/RIC as a Program Specialist for their Data Privacy and Security Service (DPSS) and is also a member of the statewide RIC one Data Privacy and Security Service. The DPSS service provides data security and privacy tools and resources to help... Read More →

Wednesday March 26, 2025 1:00pm - 1:45pm EDT
Troy Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Data Privacy

1:00pm EDT

IGNITE Session LIMITED

Wednesday March 26, 2025 1:00pm - 1:45pm EDT

Salon C

This session provides attendees with a panel of 5 DPO's from around the state that will be discussing the best practices they have put into place for 2024-25.

RIC One DPSS Representative

Raheela Baig

Coordinator, Data Privacy & Security Services, LHRIC

"I've been with LHRIC since 2006, initially as an educational consultant. Over the past three years, I've transitioned to the data privacy service and security department. My role involves consulting with school districts on data privacy and security needs, providing guidance on policy... Read More →

Laura Pollak

Supervisor, NASTECH & DPSS, Nassau RIC

Laura Pollak supervises the Nassau RIC Data Privacy and Security Service (DPSS), providing data privacy and cybersecurity resources that support district efforts to protect and secure district data and is a member of RIC One DPSS and Cyber Task Force. Laura also supervises the Nassau... Read More →

Speakers

Michelle Krieger

Data Protection Officer, Lake Shore CSD

Michelle Krieger is the Data Protection Officer (DPO) for Lake Shore Central School District. She has been an educator for over 23 years, with previous experience as a Special Educator, Technology Integration Specialist, and Technology Coordinator. Michelle has been a presenter... Read More →

Wednesday March 26, 2025 1:00pm - 1:45pm EDT
Salon C Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Leadership

1:00pm EDT

Phishing FLARE: Responding Fast & Smart LIMITED

Wednesday March 26, 2025 1:00pm - 1:45pm EDT

Salon A

Learn how to respond quickly and effectively to phishing attempts, with a focus on system responses (with an emphasis on Google) and follow-up actions beyond the system. This session will introduce the FLARE framework (Find, Lock Down, Alert, Review, Evaluate) to guide you through immediate actions during an attack and post-incident improvements.

Speakers

Jessica Kingsbury

Director of Technology, UFSD of the Tarrytowns

Wednesday March 26, 2025 1:00pm - 1:45pm EDT
Salon A Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Cybersecurity

1:00pm EDT

The Efficient Negotiation & Execution of Data Privacy Agreements (DPAs) LIMITED

Wednesday March 26, 2025 1:00pm - 1:45pm EDT

Empire Room

The 12 Regional Information Centers (RICs) have been working in partnership with NYSED to develop a new centralized and standardized structure to support districts in accessing Data Privacy Agreements (DPAs). Using this structure, educational agencies will be able to piggyback on existing DPAs with vendors that include terms to address the Family Education Rights and Privacy Act (FERPA), New York State Education Law Section 2-d (Ed Law 2-d), and other data privacy requirements. Additionally, agencies will be able to submit requests to the RICs to initiate the negotiation of new DPAs. This panel session will support technology leaders, administrators, and other interested stakeholders in learning more about this structure.

RIC One DPSS Representative

Brittany Rizzo

Data Privacy & Security, Madison-Oneida BOCES

Ashleen Speen

Associate Coordinator of Data Security & Privacy, Broome-Tioga BOCES/SCRIC

Ashleen Speen is an Associate Coordinator of Data Security and Privacy at the South-Central Regional Information Center, where she specializes in data privacy and digital security for K-12 institutions. She and her Data Security and Privacy Coordination Team have a passion for empowering... Read More →

Monica Statile

Program Manager Data Security and Privacy, Capital Region BOCES-NERIC

Monica Statile is the Program Manager for Data Security and Privacy for Northeastern Regional Information Center.  As a member of the statewide group RIC One DPSS, Monica has been deeply involved with ED Law 2-d and Part 121 of the regulations since 2015.  Monica started her career... Read More →

Wednesday March 26, 2025 1:00pm - 1:45pm EDT
Empire Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Data Privacy

1:00pm EDT

District Spotlight with Suffolk RIC & West Islip UFSD LIMITED

Wednesday March 26, 2025 1:00pm - 1:45pm EDT

State Room

Dr Patrick Kiley-Rendon, Technology Director of West Islip will discuss his district's experience working with CISA and their free Incident Response Tabletop service and will share the good work his team is doing around cybersecurity and data privacy.

RIC One DPSS Representative

Gary Zimmerman

IT Security Coordinator, ESBOCES

Speakers

Dr. Patrick Kiley-Rendon

Technology Director, West Islip UFSD

Wednesday March 26, 2025 1:00pm - 1:45pm EDT
State Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Regional Spotlight, Tabletop

1:00pm EDT

Level Up Your Data Privacy: Gamified Professional Development for K-12 Staff LIMITED

Wednesday March 26, 2025 1:00pm - 1:45pm EDT

Salon B

Discover how the Data Protection Officer at Honeoye Central School District is working to create a culture of data privacy and security through fun and engaging professional development. Toss out that boring computerized training and discover interactive, gamified approaches that make learning about data privacy both enjoyable and effective. From team challenges to scenario-based simulations, we’ll explore creative ways to keep staff engaged while reinforcing critical privacy practices. Join us to learn how to build a proactive, security-conscious environment where data protection is a shared responsibility and staff is motivated to play their part.

RIC One DPSS Representative

Rachelle Reid

Coordinator of Data Governance, EduTech

Speakers

Erika Asquino

Director of Curriculum, Instruction, and Technology, Honeoye Central School District

Wednesday March 26, 2025 1:00pm - 1:45pm EDT
Salon B Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Regional Spotlight, Regional Spotlight

1:00pm EDT

Disaster Recovery: What It Is—And What It Isn’t, Presented by Sedara LIMITED

Wednesday March 26, 2025 1:00pm - 1:45pm EDT

Colony Room

You will learn what Disaster Recovery (DR) is and how it relates to Business Impact Analysis (BIA), Business Continuity Planning (BCP), and Incident Response (IR). This session will explore how these components work together to minimize downtime, protect critical assets, and ensure operational resilience in the face of disruptions.

Wednesday March 26, 2025 1:00pm - 1:45pm EDT
Colony Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Vendor, Vendor Spotlight

2:00pm EDT

Cyber Dungeons & Data Dragons LIMITED

Wednesday March 26, 2025 2:00pm - 2:45pm EDT

State Room

A gamified cybersecurity tabletop simulation where you roll the dice, battle cyber threats, and defend critical data in this interactive tabletop adventure where strategy and quick thinking determine your fate!

RIC One DPSS Representative

Keith Schubert

Program Coordinator II, Capital Region BOCES

Keith Schubert is a Data Protection Coach on NERIC’s Data Security and Privacy Team. He has served on the RIC One Data Privacy and Security Service team since 2019. During his 18 years at NERIC he has also worked in Data Warehouse, SchoolTool Support, and the Data Integrations Group... Read More →

Wednesday March 26, 2025 2:00pm - 2:45pm EDT
State Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Tabletop

2:00pm EDT

Incident Response In Action: Managing a Data Breach LIMITED

Wednesday March 26, 2025 2:00pm - 2:45pm EDT

Empire Room

In today’s digital landscape, educational institutions are increasingly targeted by cyber threats, making it critical to have a well-prepared response plan. This presentation will explore the comprehensive response to the recent PowerSchool data breach, detailing the steps taken to mitigate risks, communicate transparently, and strengthen cybersecurity practices.

This session will provide a real-world case study on navigating cybersecurity challenges in education and will offer actionable strategies for improving response times, vendor accountability, and data security policies. Whether you are a technology leader, administrator, or IT professional, this presentation will equip you with the knowledge and tools to better protect your institution from future cyber threats.

Speakers

Daniel Friedman

Director of Technology, Hicksville Public Schools

Daniel L. Friedman is a dynamic leader whose career spans both educational technology and the fine and performing arts. Currently, he serves as the Director of Educational Technology and Grants at Hicksville Public Schools, where he oversees advanced technology initiatives for over... Read More →

Wednesday March 26, 2025 2:00pm - 2:45pm EDT
Empire Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Leadership

2:00pm EDT

Schools and Data Retention: What to Keep, What to Toss, and What Could Haunt You LIMITED

Wednesday March 26, 2025 2:00pm - 2:45pm EDT

Salon B

Join us for an in-depth workshop where educators, administrators, and IT professionals come together to navigate the complex landscape of data retention in schools. In an era where data plays a crucial role in decision-making and accountability, understanding what records to keep, which ones to discard, and the potential repercussions of data mismanagement is vital.

During this engaging session, we will cover:
- Essential Records: Identifying the types of data that are legally required to be retained and best practices for storing them securely.
- Data Disposal: Learning about effective methods for safely disposing of data that is no longer needed, and understanding the risks of improper disposal.
- Legal and Ethical Considerations: Exploring the legal obligations and ethical considerations surrounding data retention and how to ensure compliance with relevant regulations.
- Real-World Examples: Examining case studies of schools that faced challenges due to poor data retention policies and what we can learn from their experiences.
- Practical Strategies: Developing actionable strategies for creating a robust data retention policy tailored to your school's unique needs.

Equip yourself with the knowledge and tools to make informed decisions about data management and safeguard your school from potential data-related pitfalls. Whether you're looking to update your current practices or establish new protocols, this workshop will provide valuable insights and practical guidance.

Let's demystify data retention and ensure your school's data is managed effectively and responsibly!

Speakers

Susan Zieres Teeple

Data Protection Officer, Sullivan BOCES

Antoinette King

Founder, Credo Cyber Consulting

Wednesday March 26, 2025 2:00pm - 2:45pm EDT
Salon B Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Data Privacy

2:00pm EDT

The DPO's 5 Things You Must Be Doing, Plus 5 Best Practices LIMITED

Wednesday March 26, 2025 2:00pm - 2:45pm EDT

Salon A

I will take my notes, presentations, and questions from DPOs from around the State for the past 4 years and compile them into a concise toolkit comprised of 10 skills a DPO should have: 5 things that are a low bar threshold must-have and 5 things to strive for as best practices. The presentation will focus heavily on 8 NYCRR Part 121 requirements. Group participation encouraged!

Speakers

Joseph Eckstein

DPO, Eastern Suffolk BOCES

Attorney in NY for over 30 years, current ESBOCES DPO, member of DPAC, Business Manager for Contracts

Tracy Davey

Administrative Coordinator, Eastern Suffolk BOCES

Wednesday March 26, 2025 2:00pm - 2:45pm EDT
Salon A Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Data Privacy

2:00pm EDT

NYSED: The Data Security Review, Where are We Now? LIMITED

Wednesday March 26, 2025 2:00pm - 2:45pm EDT

Schenectady/Troy

We will provide a summary of the data security review and things we recognized the good, the needs improvement, and what's next on the horizon. We'll discuss some pain points we are seeing in the field and provide some suggestion on different pathways.

Speakers

Marlowe Cochran

CISO, NYSED

Wednesday March 26, 2025 2:00pm - 2:45pm EDT
Schenectady/Troy Albany Marriott - 189 Wolf Road, Albany, NY, USA

NYSED, NYSED

2:00pm EDT

Privacy Gains - Spotting Each Other in the Cybersecurity Gym LIMITED

Wednesday March 26, 2025 2:00pm - 2:45pm EDT

Salon C

Just like in the gym, building strong cybersecurity practices requires consistent training, accountability, and the right workout partners. In this session, we’ll break down how our district approaches data privacy as a team effort—leveraging NIST gap analysis, staff training, incident response planning, and cybersecurity tabletops to build resilience. Learn how to spot risks before they become breaches, develop a training regimen that keeps staff engaged, and flex your security muscles with real-world exercises that strengthen data protection across schools.

RIC One DPSS Representative

Saige Hupman

Program Assistant, SCRIC

Speakers

Josh Hough

Technology Program Leader, BT BOCES

Nate Revoir

PC/LAN Technician + Part Time DSP Member, SCRIC

Wednesday March 26, 2025 2:00pm - 2:45pm EDT
Salon C Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Regional Spotlight, Regional Spotlight

2:45pm EDT

Sponsor Exhibitions LIMITED

Wednesday March 26, 2025 2:45pm - 3:15pm EDT

Grand Ballroom

Wednesday March 26, 2025 2:45pm - 3:15pm EDT
Grand Ballroom Albany Marriott - 189 Wolf Rd, Albany, NY 12205

General

3:15pm EDT

Implementing a Student Data Privacy PIN for Phone Requests

Wednesday March 26, 2025 3:15pm - 4:00pm EDT

Salon B

This session will provide an overview of the implementation a Student Data Privacy PIN system in the Buffalo Public Schools. We will discuss the overall need for implementing the system, process for creating secure PINs within the SIS, educating staff on use, communicating with stakeholders, and going live with the system to share the opportunities and challenges from our experience to strengthening student data privacy across the district.

Speakers

Bryan Pasqua

Supervisor of Early Warning Indicators - Office of Shared Accountability, Buffalo Public Schools

I am the Supervisor of Early Warning Indicators in the Office of Shared Accountability at Buffalo Public Schools, an Adjunct Professor of Sociology at Niagara University, a NYS certified Social Studies Teacher and Administrator. I have worked in the field of human services, youth... Read More →

Dr. Laura Samulski-Peters

Assistant Superintendent - Office of Shared Accountability, Buffalo Public Schools

I am the Assistant Superintendent of Accountability and the Data Protection Officer for the Buffalo Ciity School District. In my role I oversee state reporting for BPS as well as special education reporting for charter and private schools in Buffalo, data and research requests... Read More →

Wednesday March 26, 2025 3:15pm - 4:00pm EDT
Salon B Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Data Privacy

3:15pm EDT

Leading with NIST CSF: Guiding Your School to Cybersecurity Excellence LIMITED

Wednesday March 26, 2025 3:15pm - 4:00pm EDT

Empire Room

In an era where cybersecurity threats are ever-evolving, school leaders play a crucial role in safeguarding their institution's digital assets. This session will empower educational leaders with the knowledge and tools needed to implement the NIST Cybersecurity Framework (CSF) effectively within their schools.

Participants will explore the leadership strategies required to align cybersecurity initiatives with educational goals, foster a culture of security awareness, and ensure compliance with regulatory standards. Through practical insights and actionable strategies, attendees will learn how to lead their institutions in adopting the core functions of the NIST CSF to build a resilient cybersecurity posture.

Key Takeaways:

- The role of leadership in driving cybersecurity initiatives
- Strategic implementation of the NIST CSF in educational environments
- Best practices for fostering a culture of cybersecurity awareness
- Tools and resources to support ongoing security improvements

Join this session to discover how proactive leadership can make cybersecurity an integral part of your school's success.

Speakers

Bhargav Vyas

Assistant Superintendent - Compliance and Info. Systems, Monroe-Woodbury Central School District

Dr. Bhargav Vyas is the Assistant Superintendent for Compliance & Information Systems in the Monroe-Woodbury Central School District. A frequent presenter at both local and state-wide professional development events, Bhargav brings a wealth of knowledge and expertise to share with... Read More →

Wednesday March 26, 2025 3:15pm - 4:00pm EDT
Empire Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Leadership

3:15pm EDT

Safeguarding Every Learner: Inclusive Threat Intelligence for K-12 Schools LIMITED

Wednesday March 26, 2025 3:15pm - 4:00pm EDT

Salon A

In a digitally inclusive learning environment, security is paramount to ensure equitable access and safety for all students. Join representatives from NYS School Districts and Arctic Wolf for a comprehensive session on enhancing school security through advanced threat intelligence. This session will explore how K-12 schools can leverage cutting-edge threat intelligence solutions to protect students, staff, and data from increasingly sophisticated cyber threats. Join us in a discussion on best practices, case studies, and effective collaboration between schools and security vendors to create a resilient, inclusive digital learning environment.

Participants will gain insights into:
- Real-world Threats and Challenges in K-12: Learn about the unique security challenges facing schools and the importance of protecting student data in inclusive digital environments.
- Threat Intelligence Strategies: Discover how Arctic Wolf’s threat intelligence services help identify, prevent, and mitigate cyber threats, providing a proactive stance in safeguarding student data and ensuring safe digital learning experiences.
- Building a Culture of Security Awareness: Explore ways to foster a security-first mindset among staff and students, ensuring everyone plays a role in protecting school digital resources.

RIC One DPSS Representative

Bridget Harris

Assistant Superintendent for Instruction, Technology & RIC, Monroe RIC

RIC Director

Speakers

Erin Sheevers

CTO, Bethlehem Central School District

Erin Sheevers is the Chief Technology Officer for Bethlehem Central School District and a trailblazer in K-12 educational technology and student safety. With over a decade of leadership experience, Erin has championed initiatives that support both secure digital environments and adaptive... Read More →

William Cooper

Director of Technology, Gloversville Enlarged School District

David L’Hommedieu

Assistant Superintendent of Information Technology and Operational Innovation, Saratoga Springs City School District

Wednesday March 26, 2025 3:15pm - 4:00pm EDT
Salon A Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Breakout, Cybersecurity

3:15pm EDT

Defend, Protect, Prevent – The Cyber Guardian Way LIMITED

Wednesday March 26, 2025 3:15pm - 4:00pm EDT

Salon C

The DPO as a Cyber Guardian defends organizations against cyber threats using the NIST Cybersecurity Framework and zero-trust principles. They combat phishing attacks, enforce MFA, and promote continuous monitoring to safeguard sensitive data. Beyond compliance with Ed Law 2d, FERPA, and COPPA, they foster a culture of cybersecurity awareness, ensuring resilience in an evolving threat landscape.

RIC One DPSS Representative

Raheela Baig

Coordinator, Data Privacy & Security Services, LHRIC

Wednesday March 26, 2025 3:15pm - 4:00pm EDT
Salon C Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Regional Spotlight, Cybersecurity

3:15pm EDT

The Executive Cybersecurity Tabletop Exercise LIMITED

Wednesday March 26, 2025 3:15pm - 4:00pm EDT

State Room

In an effort to integrate security and privacy-focused thought processes throughout everything we do, we introduced a focused "Executive Cybersecurity Tabletop Exercise" format in our Data Protection Officer training sessions this year, which were also presented to district superintendents. We have found these sessions a great way to fast-track collaborative problem-solving sessions around cybersecurity with experienced IT and leadership professionals. In this session we will talk about the need for executive tabletop exercises, the protocol for conducting the exercise, and walk the audience through a sample tabletop cybersecurity exercise.

Speakers

Dan Fullerton

RIC Director, Monroe RIC

Wednesday March 26, 2025 3:15pm - 4:00pm EDT
State Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Regional Spotlight, Regional Spotlight

3:15pm EDT

Working Together to Securely Share PII Using Encrypted Email Solutions LIMITED

Wednesday March 26, 2025 3:15pm - 4:00pm EDT

Schenectady/Troy

Learn about the partnership between Nassau RIC and three local school districts, Plainview-Old Bethpage CSD, Jericho UFSD and Franklin Square UFSD, to implement encrypted email solutions. This presentation showcases how our collaborative approach led to the successful adoption of secure communication tools that protect sensitive data while meeting the needs of all stakeholders.

RIC One DPSS Representative

Laura Pollak

Supervisor, NASTECH & DPSS, Nassau RIC

Speakers

Alex Goldberg

Director of Technology, Planview-Old Bethpage

Casey Hauptman

Director of Technology, Innovation and Data Systems, Franklin Square UFSD

Wednesday March 26, 2025 3:15pm - 4:00pm EDT
Schenectady/Troy Albany Marriott - 189 Wolf Road, Albany, NY, USA

Regional Spotlight, Regional Spotlight

3:15pm EDT

Thwart the bad guys! Increase Security, Simplify Management & Lower Costs with a Security Fabric - Presented by Fortinet LIMITED

Wednesday March 26, 2025 3:15pm - 4:00pm EDT

Colony Room

A panel of three districts and a RIC will discuss how they use four different cybersecurity solutions to improve their security posture, simplify day-to-day IT management and stay within limited budgets. We plan to spend roughly ten minutes on each topic... there will be useful tidbits for all security and IT people.

Richard Fisher - Highland CSD - Secure Networking - managing a security environment and wired/wireless network as a single converged infrastructure

David Kajdasz - WNYRIC - hear how WNYRIC protects roughly 70 districts and 100,000 mailboxes (email is still the #1 attack vector)

David Hines - Shenendehowa CSD - He'll discuss his experience and the value of implementing a SIEM to help protect a district of almost 10,000 students

Michelle Kreiger - Lake Shore CSD - Security Awareness Training - this is a *FREE* 3-year service Fortinet provides to K-12

Wednesday March 26, 2025 3:15pm - 4:00pm EDT
Colony Room Albany Marriott - 189 Wolf Rd, Albany, NY 12205

Vendor, Vendor Spotlight

4:30pm EDT

Reception Sponsored by Fortinet LIMITED

Wednesday March 26, 2025 4:30pm - 6:00pm EDT

TBA

Wednesday March 26, 2025 4:30pm - 6:00pm EDT
TBA

Vendor