Board renews Arctic Wolf monitoring service after last year’s cyber incident

The board approved the renewal of the district’s Arctic Wolf cybersecurity monitoring service, a tool district staff and insurance advisors recommended after a cyber incident last year.

A district staff member explained the renewal is a condition of the district’s cybersecurity insurance: if the district did not maintain third-party monitoring, staff said it would not be eligible for cyber coverage through PSIC or likely other carriers. The presenter told trustees the Arctic Wolf service scans network traffic and provides daily reports; one board member quipped about receiving daily emails from the service and staff offered to help trustees with the training and interface.

When asked whether Arctic Wolf had identified further threats, the presenter said no additional threats had been identified and that the previous incident appeared isolated. The district also described a near-miss: the board had evaluated switching to a different management system earlier but the vendor being considered experienced a large security breach, which reinforced the decision to keep the current provider.

Ending: The board approved the renewal (see “Votes at a glance”). Staff said they will continue to monitor the district network and to work on staff training and compliance tasks associated with the vendor portal.