Introduction
Technology now sits at the center of K–12 instruction, operations, and communication. What began as gradual digital integration accelerated dramatically with the COVID-19 pandemic, leading to unprecedented adoption of devices, online learning platforms, and cloud-based instructional tools. While this shift has expanded instructional possibilities, it has also exposed longstanding weaknesses in school technology systems. District technology leaders consistently report that the biggest challenges are not futuristic concerns like artificial intelligence but far more fundamental issues: cybersecurity vulnerabilities, student data privacy, digital equity, insufficient staffing, inadequate training, and fragile funding structures (Langreo & Solis, 2024). These domains underpin the entire digital experience in schools. When they fail, instruction fails. When they are underfunded or understaffed, the entire educational environment becomes fragile.
This report examines these issues in depth, incorporating data from national surveys, government analyses, and emerging research. It explores how these challenges interact with one another—how budget constraints worsen staffing shortages, how staffing shortages increase cybersecurity risks, and how inconsistent funding fractures digital equity. Taken together, the picture reveals a K–12 ecosystem in which technology is essential yet perpetually vulnerable. Addressing these weaknesses is now mission-critical for school districts nationwide.
Cybersecurity Threats and Incidents
Cybersecurity is the most urgent and consistently top-ranked IT priority in K–12 districts. Schools have become prime targets for criminal organizations because they store valuable personal information, rely heavily on daily digital operations, and often lack full-scale security infrastructure. When attackers succeed, the educational consequences are severe. A national analysis by the U.S. Government Accountability Office found that cyberattacks on school districts caused lost instructional time ranging from several days to several weeks, while full recovery often lasted months (U.S. GAO, 2022). Districts have incurred financial losses from tens of thousands of dollars to more than one million dollars, depending on the scope of the breach and the cost of system restoration (U.S. GAO, 2022).
The nature of student data makes these incidents especially harmful. Compromised data has included disciplinary records, psychological evaluations, attendance patterns, Social Security numbers, and other sensitive information, leaving students vulnerable to long-term identity risks (U.S. GAO, 2022). Criminals target schools precisely because this data is useful and because schools traditionally lack robust cybersecurity staffing (Radcliffe, as cited in Langreo & Solis, 2024).
Phishing attacks remain the most common entry point. Staff members overwhelmed by routine responsibilities often have little time to scrutinize suspicious emails. Ransomware attacks continue to surge, disrupting operations, shutting down networks, disabling devices, and even forcing temporary school closures. The K12 Security Information Exchange has documented more than 1,300 significant cyber incidents in U.S. schools since 2016, though the true number is estimated to be much higher due to underreporting (Levin, 2023).
Districts are responding. The adoption of multi-factor authentication has increased rapidly, and many districts now invest in continuous network monitoring, encrypted backups, and improved security controls. However, a crucial and growing component is outsourcing. Over half of district IT leaders report relying on external security firms because districts cannot recruit full-time analysts at competitive salaries (Langreo & Solis, 2024). While outsourcing provides necessary expertise, it also highlights the structural staffing deficits in school technology departments.
The human factor remains central. Teachers, office staff, paraprofessionals, and administrators must now follow cybersecurity best practices, yet districts often lack training time. The most effective security plans are those that combine technical defenses with ongoing user education—helping staff understand phishing risks, password hygiene, data handling expectations, and basic detection of suspicious activity. As Doersch emphasized, teaching “the humans” how to use systems safely is as essential as any firewall (Doersch, as cited in Langreo & Solis, 2024).
Cybersecurity failures can halt teaching, disrupt special education services, invalidate testing schedules, and undermine community trust. For these reasons, cybersecurity stands as the single most critical and pervasive IT challenge in K–12 today.
Data Privacy Challenges
Closely connected to cybersecurity is the growing emphasis on student data privacy. District technology leaders ranked student data privacy and security as their second-highest priority in 2024 (Langreo & Solis, 2024). Schools handle enormous volumes of sensitive information, including academic records, medical accommodation details, disciplinary histories, demographic data, and increasingly, the output of digital learning analytics.
The rapid expansion of cloud-based apps and digital instructional tools has made data privacy a more complex and decentralized responsibility. Third-party vendors now store and process much of the data once kept exclusively on-premises. This shift requires careful vetting, vendor agreements, and strict adherence to privacy standards.
State legislatures have stepped in where federal privacy laws have not kept pace. Since 2014, more than a thousand student privacy bills have been introduced across every U.S. state, with almost 150 new state privacy laws enacted (Public Interest Privacy Center, 2025). These laws frequently restrict how ed-tech companies may use student data, prohibit targeted advertising, require breaches to be reported, and impose strict limits on data retention. California’s SOPIPA model has been widely replicated, requiring vendors to implement strong protections and banning non-educational uses of student information.
Districts must therefore maintain compliance with a patchwork of state regulations while simultaneously managing local expectations for transparency and accountability. Many are adopting stricter internal data governance frameworks—limiting which apps teachers may use, developing privacy rubrics for evaluating new platforms, and requiring staff training on legal responsibilities.
Privacy concerns also intersect with equity. Families in marginalized communities may be more wary of data misuse or may have experienced harms related to surveillance. Ensuring privacy requires not only technical and legal controls but also communication and trust-building with families who want assurance that their children’s information is protected.
Digital Equity: Connectivity and Devices
Digital equity is foundational to everything else in educational technology. Schools cannot deliver modern instruction if students cannot access their devices or connect reliably to the internet.
Within school buildings, network infrastructure has improved significantly. Most schools now report adequate broadband access across learning spaces. However, gaps persist. Roughly one-quarter of schools still report insufficient Wi-Fi coverage in parts of their buildings, particularly older facilities or rural campuses (NCES, 2025).
Device access inside school has expanded dramatically. By 2025, 88% of schools had established a one-to-one device program (NCES, 2025). Chromebooks and low-cost laptops have been the backbone of these efforts. But access outside of school remains the critical challenge. Only about 46% of schools allow students to regularly take devices home, and that drops to 34% in high-poverty schools (NCES, 2025). Thus, many students still lack a reliable device after dismissal.
Home internet access is even more uneven. As Gao (2024) documented, household access to reliable broadband improved during the height of pandemic intervention but plateaued soon afterward. A significant percentage of low-income households and families of color remain without stable home connectivity. Emergency federal initiatives such as the Emergency Connectivity Fund narrowed gaps temporarily by providing millions of devices and hotspots (Gao, 2024). However, these programs were designed as short-term relief and are now largely expended.
The result is a growing “funding cliff” for digital equity. Districts that temporarily achieved widespread home connectivity during remote learning are now forced to scale back hotspot programs, replace broken devices without federal reimbursement, and decide whether they can afford long-term broadband support for families (Langreo & Solis, 2024).
Digital equity is not only about access to hardware and networks but also about ensuring equitable learning opportunities. Students who lack consistent device access at home complete homework less reliably, fall behind in classes that require digital engagement, and experience additional stress and stigma. Bridging this divide remains one of the most persistent IT challenges in American education.
IT Staffing and Support Shortages
Even when schools have strong infrastructure, high-quality devices, and robust cybersecurity tools, none of it functions without skilled IT staff. The K–12 technology workforce matters as much as the hardware itself.
District technology leaders rank staffing shortages as one of the top two most severe challenges they face (CoSN, 2024). Many districts cannot offer competitive salaries for network engineers, cybersecurity analysts, data specialists, or instructional technology coaches. As a result, open positions remain vacant for long periods, or existing staff must shoulder overwhelming workloads.
At least half of district IT leaders report that they do not have sufficient staffing to support teachers, maintain devices, assist families, or implement districtwide technology initiatives (Langreo & Solis, 2024). Small or rural districts face the steepest barriers; some rely on a single technician to serve multiple school buildings or require staff with limited IT background to manage major systems.
This staffing gap drives districts toward outsourcing. Cybersecurity outsourcing has surged, with 57% of districts contracting with external firms (Langreo & Solis, 2024). Some districts share IT staff across consortia or rely heavily on vendors for network management. While these strategies help close immediate gaps, they introduce long-term vulnerabilities—outsourcing cannot fully replace the need for internal expertise.
Retention is equally challenging. The rapid expansion of devices and software during the pandemic multiplied responsibilities, but IT departments did not grow proportionally. Many technology professionals in schools report burnout, limited advancement opportunities, and unsustainable workloads.
Some districts have begun developing “grow-your-own” pathways, training teachers, librarians, or paraprofessionals with IT aptitude to transition into technology roles. Others are investing in professional development to help current staff gain cybersecurity certifications or leadership skills. CoSN reports efforts by districts to broaden recruitment and promote diversity in IT teams, recognizing that a more inclusive workforce expands the available talent pool (CoSN, 2024).
Still, without substantial increases in funding and competitive compensation structures, staffing shortages will continue to impede districts’ ability to build secure, resilient, and innovative technology environments.
Professional Development and Training Needs
Even the best technology fails in the absence of well-prepared educators. Research consistently shows that teachers’ confidence with technology strongly influences whether digital tools are used effectively—or at all. Yet teacher preparation programs and school-based training often lag behind technological change.
More than half of new teachers report feeling unprepared to integrate technology into instruction (Klein, 2023). Many say they received minimal preparation in digital pedagogy during their credential programs. Others note that knowing how to use personal technology does not equate to knowing how to manage devices in a classroom, interpret data from online assessments, or incorporate digital collaboration into lessons.
School-based professional development often suffers from limited time, inconsistent quality, or lack of follow-up. Teachers frequently learn about new tools only when a district mandates them, leaving educators frustrated and unsure how to incorporate them into their existing practice.
IT staff also require training. District technology leaders express deep interest in professional development on cybersecurity, crisis planning, and sustaining innovation—areas where threats evolve rapidly and require continuous learning (CoSN, 2024).
Some states and districts are responding with dedicated technology coaches, regional learning technology centers, or state-sponsored digital learning networks (SETDA, 2023). These initiatives aim to embed instructional technology coaching into teachers’ daily practice, not just isolated workshops.
However, without explicit time built into teachers’ schedules, high-quality professional development cannot take root. Districts must recognize that integrating technology is as much a pedagogical shift as a technical one, requiring ongoing support rather than one-off trainings.
Funding Constraints and Sustainability
Technology funding in K–12 education remains volatile, fragmented, and often insufficient. Nearly every IT issue—cybersecurity, staffing, device replacement, broadband, professional development—ultimately comes back to funding. District technology leaders consistently rank budget limitations as their number-one challenge (CoSN, 2024).
Much of the recent expansion in technology access was funded not through normal district budgets but through temporary federal pandemic relief. ESSER funds and the Emergency Connectivity Fund enabled districts to purchase millions of laptops, hotspots, and software licenses at unprecedented scale (Gao, 2024). While these programs rapidly expanded digital access, they also created an unstable foundation. As federal funds expire, districts face the reality that they must now sustain these expanded technology ecosystems on significantly smaller budgets.
This is the “funding cliff” described by Krueger in 2023—a moment when districts must confront the gap between what emergency funding allowed them to build and what their long-term budgets can sustain (Krueger, as cited in Yoder, 2023). Many districts are already scaling back hotspot programs, reducing software subscriptions, or deferring device replacement cycles.
Technology refresh cycles pose another challenge. Chromebooks and similar devices typically last four to six years. Districts that bought large fleets simultaneously during the pandemic now face simultaneous replacement needs—an enormous financial burden.
Inefficient spending compounds the problem. Yoder (2023) noted that many districts purchased software tools that went largely unused. In some districts, only about 30% of purchased digital tools were used regularly by teachers or students. This represents substantial waste and highlights the need for tighter procurement oversight.
Some states have begun pioneering accountability models that tie software procurement to documented usage, teacher training, and instructional impact. Utah’s statewide ed-tech model is one example that requires vendors to include teacher training and allows reimbursement for unused licenses (Yoder, 2023).
Long-term sustainability will require districts to treat technology as a recurring, predictable operational expense—like textbooks or transportation—not an occasional capital expenditure. It will also require state and federal policymakers to consider more stable funding mechanisms for connectivity, cybersecurity, and digital learning infrastructure.
Technology Integration and Interoperability Challenges
K–12 schools rely on an ever-expanding constellation of applications: learning management systems, student information systems, communication platforms, digital curriculum tools, assessment systems, and productivity suites. However, these systems often do not communicate with one another smoothly, creating logistical burdens for teachers, confusion for students, and inefficiencies for administrators.
Interoperability remains limited. While single sign-on adoption has increased, fewer than half of districts have fully implemented it (CoSN, 2024). Data systems often remain siloed, forcing teachers to navigate multiple platforms to gather insights about student progress. For IT departments, synchronizing rosters, permissions, and user accounts across dozens of platforms is labor-intensive and prone to error. Additionally, each additional platform expands the district’s attack surface, increasing security vulnerabilities.
An overabundance of digital tools—often acquired quickly, especially during remote learning—has resulted in what many educators call “app fatigue.” Teachers report feeling overwhelmed by a dizzying number of tools with overlapping features. Some districts have begun to consolidate their toolsets, evaluating usage metrics and eliminating low-value subscriptions. Formal vetting committees that include curriculum leaders, teachers, and IT professionals can ensure that new tools align with instructional needs and technical capacity.
Interoperability is not merely a convenience issue; it is central to instructional quality. Data-driven instruction cannot occur if assessment platforms cannot share data with learning management systems or student information systems. Adoption of data standards such as IMS Global or Ed-Fi is growing, but unevenly. The districts that invest in integration—by standardizing tools, implementing SSO, and building data warehouses—are better positioned to use technology coherently and effectively.
Comparison Table: Key IT Issues and Solutions
Conclusion
The modern K–12 environment depends on technology in ways that were unimaginable a decade ago. Yet the systems that support digital learning remain fragile. Cybersecurity threats are escalating faster than districts can respond. Data privacy demands constant vigilance. Digital equity gains made during the pandemic are at risk as emergency funding dries up. Staffing shortages undermine districts’ ability to maintain secure and reliable systems. Teachers remain underprepared for the digital demands of modern instruction. Funding is inconsistent, unpredictable, and often insufficient. And the rapid expansion of digital tools has created integration challenges that hinder learning rather than support it.
These issues are interconnected. If funding collapses, staffing suffers. If staffing suffers, cybersecurity risk increases. If cybersecurity fails, instruction grinds to a halt. Likewise, if teachers are not trained, digital equity exists only on paper.
Addressing these problems requires a coherent, ongoing commitment. It requires policymakers to treat broadband, cybersecurity, and technology staffing as essential educational infrastructure. It requires districts to adopt sustainable budgeting practices, strategic procurement, and integrated approaches to professional development. And it requires a long-term vision in which technology is not an add-on but an essential component of high-quality public education.
As the National Education Technology Plan emphasizes, technology must support active learning, equitable access, robust infrastructure, privacy, and continuous improvement (U.S. Department of Education, 2024). Achieving that vision is challenging but indispensable. Schools that invest strategically in solving these foundational IT challenges will be positioned to deliver safe, equitable, and effective digital learning for years to come.
References
CoSN (Consortium for School Networking). (2024). 2024 State of EdTech Leadership Report. Consortium for School Networking.
Cybersecurity and Infrastructure Security Agency. (2023). Protecting Our Future: Partnering to Safeguard K–12 Organizations from Cybersecurity Threats. U.S. Department of Homeland Security.
Gao, N. (2024, February 21). California’s K–12 digital divide has narrowed, but access gaps persist. Public Policy Institute of California.
Klein, A. (2023, September 12). A majority of new teachers aren’t prepared to teach with technology. What’s the fix? Education Week.
Langreo, L., & Solis, V. (2024, May 14). It’s not just about AI: Schools are facing 5 other tech challenges, too. Education Week.
Levin, D. (2023, February 2). K12 SIX applauds landmark federal report on cybersecurity risks facing U.S. K–12 schools. K12 Security Information Exchange.
National Center for Education Statistics. (2025, February 19). More than half of public school leaders say cell phones hurt academic performance (School Pulse Panel). U.S. Department of Education.
Public Interest Privacy Center. (2025). State student privacy laws. Future of Privacy Forum.
U.S. Government Accountability Office. (2022, December 1). As cyberattacks increase on K–12 schools, here is what’s being done. U.S. Government Accountability Office.
Yoder, S. (2023, October 16). School ed tech money mostly gets wasted. One state has a solution. The Hechinger Report.
