In a rapidly evolving digital landscape, K-12 IT teams play a critical role in shaping the future of learning. As schools navigate complex cybersecurity and data protection challenges, they also juggle issues including equitable access to technology.
Classrooms are increasingly reliant on digital learning tools, and the focus on robust infrastructure, cybersecurity, and effective technology implementation has never been more urgent. Prioritizing these areas empowers schools to create safe, inclusive, and future-ready learning environments for all students.
We asked K-12 IT leaders to share their thoughts around IT priorities in the new year. Here’s what they had to say:
Educational institutions face the unique challenge of needing to modernize their networks, while also improving user and employee experience and following compliance requirements. This will remain true in 2025, but these institutions must tackle these problems against the backdrop of persistent cyberattacks, as well as curious and capable students. Between 2023 and 2024, we saw a 35 percent increase in attacks on the education sector, and as ransomware groups continue to target the sector with more sophisticated attacks–by leveraging tools like generative artificial intelligence–the potential impacts could be devastating. Institutions have no choice but to stay prepared and prioritize improving their security posture. Education institutions should focus on maintaining strong IT security fundamentals and implementing zero trust architecture–especially for research projects with federal funding ramifications. These strategies minimize the attack surface, prevent breaches, eliminate lateral movement, and stop data loss. Proactively addressing these evolving threats will enable institutions to remain more resilient against a growing threat landscape in the coming year.
—Hansang Bae, Public Sector Chief Technology Officer, Zscaler
New School Safety Resources
Organizations will prioritize internal defenses and post-breach strategies over traditional perimeter security, recognizing that the fight against cyberattacks is shifting inward. Advanced attacks will increasingly target sectors like education and healthcare, making data encryption and network segmentation essential components of resilient cybersecurity frameworks. As AI-fueled attacks grow more sophisticated, agencies will focus on limiting attackers’ movements within networks, accepting that the perimeter can no longer be the sole line of defense.
—Gary Barlet, Public Sector CTO, Illumio
In the two years since GenAI was unleashed, K-12 leaders have ridden the wave of experimentation and uncertainty about the role this transformative technology should have in classrooms and districts. 2025 will see a shift toward GenAI strategy development, clear policy and governance creation, instructional integration, and guardrail setting for educators and students. K-12 districts recognize the need to upskill their teachers, not only to take advantage of GenAI to personalize learning, but also so they can teach students how to use this tech responsibly. On the back end, IT leaders will grapple with increased infrastructure demands and ever-increasing cybersecurity threats.
—Delia DeCourcy, Senior Strategist, Lenovo Worldwide Education Team
With AI literacy in the spotlight, lifelong learning will become the new normal. Immediate skills need: The role of “individual contributors” will evolve, and we will all be managers of AI agents, making AI skills a must-have. Skills of the future: Quantum skills will start to be in demand in the job market as quantum development continues to push forward over the next year. Always in-demand skills: The overall increase in cyberattacks and emerging risks, such as harvest now and decrypt later (HNDL) attacks, will further underscore the continued importance of cybersecurity skills. Upskilling won’t end with AI. Each new wave of technology will demand new skills, so lifelong learners will thrive. AI will not be siloed to use among technology professionals. The democratization of AI technology and the proliferation of AI agents have already made AI skills today’s priority. Looking ahead, quantum skills will begin to grow in demand with the steady advance of the technology. Meanwhile cybersecurity skills are an evergreen need.
—Lydia Logan, VP of Global Education & Workforce Development, IBM
In 2025, K-12 schools will continue to experience significant transformations driven by AI, IoT, and biometric authentication. AI will significantly enhance school cybersecurity by automating threat detection and response, as well as introduce risks, such as AI-powered cyberattacks. Schools are adopting more advanced AI security tools to manage these threats, balancing real-time protection with privacy concerns. However, IoT adoption will require strong security protocols to prevent vulnerabilities, including network segmentation and careful vendor management. Biometric technologies, such as fingerprint and facial recognition, will be more widely deployed for security and authentication, streamlining processes like student check-ins, and building access. As biometrics merge with AI and IoT, privacy and data protection will be critical, requiring schools to ensure compliance with privacy regulations and secure handling of biometric data. Overall, as technologies evolve, K-12 schools must carefully balance innovation with privacy and security to enhance security, streamline operations, and create safer, more personalized learning environments for students and staff.
–Jason Martin, CTO, Incident IQ
K-12 schools faced a barrage of cybersecurity attacks in 2024, which showcased why building up the U.S. cybersecurity workforce is so important. Addressing this starts with K-12 cybersecurity education, upskilling, and improving cross sector collaboration. We’ve seen firsthand how education systems have forged stronger partnerships with industry partners and workforce development organizations to pool resources and intelligence. In 2025, we’ll continue to see local law enforcement step up their involvement in curbing these types of attacks, working together with schools to enhance security protocols and respond swiftly to incidents. This proactive approach has the potential to reshape the cybersecurity landscape in education, fostering a united front against malicious actors and ensuring our students have the skills, knowledge, and real-world experience to enter cybersecurity careers.
—Laurie Salvail, Executive Director, CYBER.ORG
Data and technology policies will tighten amid rising concerns for student privacy. As K-12 schools increasingly rely on digital tools and cloud-based platforms, districts across the United States are implementing stringent data protection measures to safeguard student information. The landscape of student privacy regulations continues evolving at state and federal levels, highlighting how schools are responding to growing concerns about data collection, storage, and sharing practices. In 2025, schools will move beyond collecting data to truly making it actionable. Instead of drowning in spreadsheets, educators will leverage predictive analytics to identify students needing support before they fall behind. The most successful districts will be those that can translate complex data into clear, actionable insights for both teachers and families.
—Joy Smithson, Data Science Manager, SchoolStatus
The threat of AI-powered cyberattacks: Experts think 2025 might be the year cybercriminals go full throttle with AI. Think about it: with the advancement of the technology, cyberattacks powered by AI models could start using deepfakes, enhanced social engineering, and ultra-sophisticated malware. If the Trump administration focuses on cybersecurity mainly for critical infrastructure, private companies could face gaps in support, leaving sectors like healthcare and finance on their own to keep up with new threats. Without stronger regulations, businesses will have to get creative–and fast–when it comes to fighting off these attacks.
–Alon Yamin, Co-Founder & CEO, Copyleaks
Related:
25 predictions for AI in 2025
