The Boyz of Edtech

When a Data Breach Hits: Real Talk from a District CTO on Trust, Security, and What Comes Next


Listen Later

In this episode of the Boys of EdTech, Rick, Ryan, and Jeff are joined by Amanda Lanicek, CTO of Springtown ISD, for a candid and urgent conversation on navigating a major data breach in K-12 education.

Amanda walks through her real-time response to the Instructure incident—from immediately disconnecting APIs and securing systems to communicating transparently with staff and families. She shares the tough reality of operating with limited resources while making high-stakes decisions that impact student safety and district trust.

The conversation dives deep into where vendors fell short, especially around communication and transparency, and what districts actually need in moments of crisis. Amanda emphasizes the importance of proactive security measures like MFA, geofencing, and continuous education—not just for staff, but for students and parents as well.

Beyond the breach itself, the episode explores broader implications for edtech: build vs. buy decisions, the future of cloud vs. on-prem infrastructure, and how districts should rethink partnerships moving forward. The group also highlights the human side of leadership—empathy, community collaboration, and showing up for others during high-pressure situations.

This episode is a must-listen for district leaders, edtech vendors, and anyone responsible for protecting student data in an increasingly complex digital landscape.

Connect with the Boyz
Rick Fernandez: https://www.linkedin.com/in/dr-rick-fernandez-40692434/
Matthew Millstein: https://www.linkedin.com/in/matthew-millstein/
Jacob Kantor: https://www.linkedin.com/in/thejacobkantor/
Ryan Patenaude: https://www.linkedin.com/in/ryanpatenaude/
Jeff Piontek: https://www.linkedin.com/in/jeffpiontek/

Key Moments

01:09 First response: securing systems and disconnecting access

02:40 Where vendor communication broke down

04:06 Preparing schools for phishing and cyber threats

06:02 Security basics every district should implement

07:25 What effective crisis communication should look like

09:05 Why acting early matters more than avoiding disruption

11:29 How breaches spread through connected systems (APIs explained)

13:39 Real-world risks: phishing, scams, and data misuse

15:05 Build vs. buy: rethinking edtech reliance

16:52 How districts make high-stakes decisions during crises

18:10 Safer alternatives for data sharing and integrations

21:58 The power of community and shared best practices

27:23 Teaching digital safety to students and families

34:56 What makes a great (and terrible) cold email


Connect with Guest:
Amanda Lanicek: https://www.linkedin.com/in/amandalanicek


Interested in joining the show?
Fill out the form: https://forms.gle/SRVhzpXikBombee38

...more
View all episodesView all episodes
Download on the App Store

The Boyz of EdtechBy Old Soul