K-12 Cybersecurity Initiative (Texas Education Agency partnership) is sponsored by Texas Education Agency (in collaboration with Microsoft Corp. and others). This opportunity supports mission-aligned projects and measurable outcomes.

K-12 Cybersecurity Initiative | Texas Education Agency K-12 Cybersecurity Initiative What is the K-12 Cybersecurity Initiative? In response to the increasing threat of ransomware and other malicious cyber activity targeting school systems across Texas, the Texas Education Agency (TEA) launched the K-12 Cybersecurity Initiative in 2023 .

The initiative was made possible through funding approved by the 88th Texas Legislature, which supported TEA’s request for dedicated cybersecurity resources to help school systems strengthen their defenses and respond to emerging cyber risks. The program officially started on September 1, 2023 , and was initially funded through the FY24/FY25 biennium (September 2023–August 2025).

We are pleased to share that the 89th Texas Legislature has approved an additional $42 million in funding for the FY26/FY27 biennium (September 2025–August 2027), ensuring the continuation and expansion of this critical initiative. Remaining funds from FY24/FY25 have also been transferred forward to support ongoing efforts.

The goal of the initiative is to deliver immediate, practical solutions to help LEAs defend against major cyber incidents, such as ransomware attacks. Priority is given to rural school systems , and cybersecurity practitioners are available through regional education service centers to support the implementation of cybersecurity controls aligned with the scope of this initiative.

The program officially launched on September 1, 2023, with funding provided through the FY24/FY25 biennium (September 2023–August 2025). The Texas legislature has approved $42M for the continuation of this initiative in TEA’s FY26/FY27 budget (September 2025–August 2027) . Remaining funds from FY24/FY25 have been carried forward.

Updates will be provided as additional funding decisions are made in future legislative sessions. All school systems are strongly encouraged to implement the following cybersecurity controls, which fall within the scope of the K-12 Cybersecurity Initiative, between September 1, 2023, and August 31, 2025: Implement fully managed Endpoint Detection and Response (EDR) on school system servers and applicable staff devices.

TEA will fully fund licenses with limited distribution. See details below. Implement Multi-Factor Authentication (MFA) for staff email systems.

Ensure DMARC Compliance to enhance protection against phishing and spoofing. Restrict local administrator access to minimize the risk of unauthorized system changes. Complete a Texas Cybersecurity Framework (TCF) assessment to get a baseline for your cybersecurity program and action plan for improving your maturity.

TCF assessment is provided on a first-come, first-served basis by TEA through the Department of Information Resources (DIR) program. Implement Network Detection and Response (NDR). The NDR Pilot is paused to new customers as we evaluate current participation and future capacity.

For FY26–FY27, the Texas State Legislature has approved an additional $42 million to continue advancing the K–12 Cybersecurity Initiative. These funds will support the following key efforts: Expansion of Managed EDR Services Continued support for the current managed EDR offering, with a focus on increasing adoption among additional school systems.

Continued funding for additional TCF assessments through DIR Managed Security Services (MSS). Continued Support for Education Service Centers (ESCs) Additional funding to enable ESCs to provide technical assistance to their school systems in support of the K-12 Cybersecurity Initiative.

K-12 Cybersecurity ESC Contacts Implementation of Additional Security Controls Support for additional security controls at each school system to further strengthen cybersecurity maturity across the state. New Initiatives for FY26-FY27 – All school systems are eligible. These services are provided at no-cost to the school system.

Implement Cloud Email Security Provided in partnership with the University of Texas Regional Security Operations Center (UT-RSOC). DIR Certified Security Awareness Training and Phishing Simulations Provided in collaboration with the Technology Alliance for Statewide Initiatives (TASI). Microsoft 365 & Google Workspace Hardening Guides Developed by TASI to support secure configuration practices.

Available Now - Contact your ESC for sign-up and distribution Software Deployment Solution for EDR and Other Applications Provided through TASI to support deployment of EDR agents and other software. Available September 1, 2026 How much money was appropriated for the K-12 Cybersecurity Initiative? The Texas State Legislature initially appropriated $55M to support the K-12 Cybersecurity Initiative and an additional $42M for FY26/FY27.

From the legislative entry into the budget: It is the intent of the Legislature that the Texas Education Agency enter into an interagency agreement with the Department of Information Resources (DIR) to provide cybersecurity services for school systems in accordance with DIR Strategy C. 1. 2, Security Services.

Cybersecurity services to be provided by DIR may include but are not limited to, cybersecurity assessments, endpoint detection response, and network detection response. Table scrolls horizontally on small screens. Cybersecurity technical assistance provided by ESCs TEA-funded third-party cybersecurity assessments Available to all school systems.

First come, first served Request through STS Portal TEA-funded Endpoint Detection & Response (EDR) subscriptions Prioritized for small & midsize school systems.

First come, first served Request through STS Portal NDR phase 1 pilot program is now closed Pilot group of school systems Evaluate pilot participants to determine next steps INTER-LOCAL CONTRACT WITH DIR SHARED TECHNOLOGY SERVICES (STS) REQUIRED School systems will need to sign DIR’s inter-local contract to receive the in-scope services from DIR’s STS, Managed Security Services (MSS) program.

Our goal is to have all eligible school systems onboarded with a signed inter-local contract so the services can be distributed as soon as possible. After the inter-local contract is in place, eligible school systems may then request in-scope services through the STS program, which will be paid for by TEA. The MSS vendor or your regional education service center may reach out to your school system to help facilitate this process.

Details about this process were discussed in the April Cybersecurity Coordinator call . It is TEA’s intention to focus on small and rural school systems for the distribution of EDR services through DIR’s MSS.

The EDR provided, which replaces traditional anti-virus software and incorporates threat intelligence along with malicious behavior characteristics on endpoints, will be fully managed to eliminate additional school system overhead and is one of the best solutions to prevent ransomware and secure devices. The current vendors under the MSS contract for EDR are CrowdStrike and SentinelOne.

To provide a scope that we can reasonably accommodate with the funding provided, TEA will limit the distribution to school systems with a total enrollment of 50,000 and below, with a range from 30 licenses up to licenses equal to 30% of student enrollment, whichever is larger.

It is TEA’s intent to focus on high-risk and high-impact devices, so initial distribution should focus on servers and central office staff with any remaining licenses distributed to other staff devices that have access to sensitive data. Cybersecurity assessments will also be available to school systems as part of this initiative and will also be provided by the MSS vendor through DIR’s services catalog.

The intent of these assessments is to provide a high-level look at the overall state of cybersecurity in Texas’ K-12 public entities. TEA will not receive detailed copies of reports for any individual school system. TEA will only receive an aggregate report of the assessments.

Refer to the TX K12 Cybersecurity Assessment Quick Start Guide for details on how to request a Cybersecurity Assessment for your district. *The program scope is subject to change in order to achieve initiative goals. Initiative implementation details are still in development.

TEA will provide updates through Cybersecurity Coordinator Forum webinars and this site. Steps to Onboard School Systems to the DIR STS Portal. This is required for EDR and TCF assessment: The DIR Onboard process begins when the school system returns the New Customer Form to DIR.

The school system will need to sign DIR’s InterLocal Contract (ILC) to receive the in-scope services from DIR’s Shared Technology Services Program (STS), Managed Security Services (MSS) program . This will be sent to the InterAgency Contact (IAC) on page 1 of the New Customer Information Form for their review and signature.

Onboard to the STS portal – this portal allows your entity to make requests for services, review proposed services and review any associated costs with those services. This will be sent to the Service Operations Contact on Page 1 of the New Customer Information Form.

When DIR has finalized the signature process on the ILC and returns it to the school system, the school system will receive a “Welcome Aboard” email from DIR, and school system can put in a request for service. Note: All onboarding emails will come from STS System Message txdir@servicenowservices. com .

Please make sure to whitelist this domain. Steps to Onboard to UT-RSOC Email Security Service: Complete the Email Security Service pre-registration survey. Completion of this survey is mandatory and must be submitted before onboarding activities can begin.

Contact UT-RSOC at rsoc@utexas. edu to start the ILC with UT-RSOC. Once the pre-registration survey is submitted, TEA will review and provide the necessary approvals to UT-RSOC to begin onboarding.

Note: All onboarding emails will come from UT Regional Security Operations Center rsoc@utexas. edu . Please make sure to whitelist this domain.

You may register for the Cybersecurity Coordinator Forum series using your school system email address.

April 2023 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck — April 2023 (PDF) May 2023 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck — May 2023 (PDF) June 2023 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck — June 2023 (PDF) August 2023 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck — August 2023 (PDF) September 2023 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - September 2023 (PDF) February 2024 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - February 2024 (PDF) March 2024 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - March 2024 (PDF) April 2024 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - April 2024 (PDF) September 2025 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - Sept 2025 (PDF) October 2025 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - Oct 2025 (PDF) January 2026 Statewide Webinar Webinar Slide Deck - Jan 2026 (PDF) February 2026 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - Feb 2026 (PDF) April 2026 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - April 2026 (PDF) May 5, 2026 Endpoint Detection & Response (EDR) Webinar Webinar Slide Deck - May 5, 2026 (PDF) May 2026 Cybersecurity Coordinator Forum Webinar Webinar Slide Deck - May 2026 (PDF) K-12 Cybersecurity TAA - June 2023 K-12 Cybersecurity TAA - September 2023 K-12 Cybersecurity ESC Contacts