Last week, we were joined by Samuel Carter from NC Stateâs Friday Institute for Educational Innovation to talk about how North Carolina built a statewide cybersecurity program for its public schools, spanning 1.5 million students, 250,000 staff, and 349 public school units, with the help of runZero.
Naturally, we started with some barbecue banter, as Texans and Carolinians are wont to do, and quickly moved into a conversation about what it means to defend a stateâs worth of classrooms with almost no dedicated security teams.
The Challenge: 2,700 schools, countless devices, minimal staff #
In many districts, the âIT departmentâ is a science teacher, a bus driver, or whoever once fixed the printer. Budgets are tight, technical expertise varies widely, and infrastructure runs the gamut, from modern data centers to aging laptops doubling as servers.
Each schoolâs network is its own microcosm:
IoT and OT devices everywhere: cameras, HVAC systems, door controllers, vape sensors, even robot vacuums.
Shadow IT galore: teachers purchasing routers or smart devices to âget the job done.â
Legacy systems: Windows XP machines, outdated firmware, and devices that canât be patched or replaced.
With threats like ransomware and new CISA emergency directives appearing routinely, the question was simple, but massive:
How can one state see and secure everything without adding complexity to school administrators who are already stretched thin?
The Solution: Agentless, scalable, and centralized #
Sammieâs team needed something that could run anywhere and require almost nothing from the schools themselves. runZeroâs agentless discovery fit perfectly.
With a single statewide account divided into 350 organizations, the state gained a unified view of every schoolâs environment while allowing local teams to manage their own networks. One lightweight runZero Explorer per site was enough.
Now, even districts with minimal staff could see their full inventory: laptops, cameras, thermostats, smartboards, and all the âdoohickeysâ that make up a modern classroom. That visibility became the foundation for everything else.
Why runZero worked so well #
- Lightweight by design.
Agent-based tools didnât scale. âItâs hard enough to keep one laptop running,â Sammie said, âlet alone install agents on every deviceâor the thermostat.â runZeroâs zero-agent approach eliminated that barrier. - Centralized visibility, local control.
The Friday Institute can scan ~100,000 external IPs every three days for statewide risk trends, while individual schools schedule internal tasks around their realitiesâlike pausing during exam week. The model keeps operations local but insight global. - Fast, human support.
When a district admin hit an SSO snag, runZero resolved it in four minutesâbefore Sammie could even reproduce the error. When the state needed longer event history to investigate an issue, the runZero team pushed a hot patch within hours. âI thought it was just for us,â Sammie said. âTurns out it shipped to everyone.â - Built-in intelligence that saves time.
runZeroâs Findings and Risk Dashboard let schools focus on what mattered mostâwhether that was a critical Cisco ASA vulnerability or banned hardware from the FCC Secure Networks Act list. We added that query directly to the product after Sammieâs team flagged the need.
Results: Big-picture insight for small teams #
With runZero, North Carolina can:
See every device across 2,700 schools.
Spot risky connections and misconfigurations early. (Like a Siemens HVAC unit quietly tunneling traffic to a support network in Vietnam.)
Detect exposures before other tools. runZero identified vulnerable Cisco ASA devices before other scanners did, giving schools a head start.
Coordinate response across hundreds of networks. One shared view turns a handful of state-level defenders into a multiplier for hundreds of local teams.
And sometimes, the wins are small but tellingâa âmissingâ Chromebook that turned up in a neighboring district, located in seconds with a single cross-org search.
The takeaway #
When youâre running security for thousands of schools on shoestring resources, success isnât about perfection â itâs about visibility, simplicity, and speed.
North Carolinaâs program shows that scalable, agentless exposure management can make even the leanest teams act big. Because in cybersecurity (especially in schools) you canât protect what you canât see.
Watch the webcast replay #
And check out the in-depth case study to learn how North Carolina scaled visibility statewide.
