District technology leaders briefed the board on implementation of a state cybersecurity requirement (Act 846) and on local IT assets and priorities.

"Our network infrastructure consists of 141 network switches, 472 wireless access points, 621 VoIP phones, 341 surveillance cameras and 65 servers," said Todd Cross, technology director, outlining the scale of district IT operations and the reasons for adopting a formal cybersecurity framework. He said Act 846 requires a phased implementation over three years, aligned with the National Institute of Standards and Technology (NIST) framework.

Cross said the district has largely implemented many Phase‑1 controls (access control, contingency planning, incident response and system integrity) but identified awareness and staff training as a gap. To meet that requirement, the district is rolling out a Fortinet‑provided security awareness and phishing training offer that is free for three years; all staff with network logins must complete the training. "It will be an annual process from here on out," Cross said.

Board members asked about whether training had been communicated to trustees and about possible long‑term costs for enhanced services. Cross said the initial three‑year package is free and that the district can add paid features if needed; trustees asked that board members receive the same training notice.

The board received the informational technology and cybersecurity update; no formal action was required.