Skip to content
    April 29, 2024

    Now Available: FERPA Compliance Reports

    What is FERPA?

    The Family Educational Rights and Privacy Act (FERPA) is a Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education.

    How Can Blumira Help With FERPA?

    Blumira can help your organization easily meet and exceed FERPA requirements for logging, monitoring, threat detection and response.

    By regularly running and scheduling Blumira’s pre-built FERPA compliance reports, you can prove your compliance to an auditor for certain controls.

    Which Reports Map to Which FERPA Requirements?

    See which Blumira reports map to which FERPA requirements so you can easily hand over pre-built reports to your auditor to prove your compliance. Please note that each report is available for certain integrations, which are listed under each report below:

    FERPA Requirements

    Blumira’s Global Reports

    FERPA 99.31(a)(1)(ii) – Failed Logins: Identify brute force and other credential attacks

    FERPA Controls - Failed Logins 
    Available for: Windows, Linux, MacOS

    FERPA 99.31(a)(1)(ii) – Privileged Access: Track access by administrators and power users

    FERPA Controls - Administrator Access 
    Available for: Windows

    FERPA Controls - Admin/root Access
    Available for: Linux

    FERPA 99.31(a)(1)(ii) Log Tampering: Detect modifications or deletions of log data

    FERPA Controls Log Tampering - Clearing of Windows Event Log
    FERPA Controls Log Tampering - Clearing of Windows Security Event Log
    Available for: Windows

    FERPA 99.31(a)(1)(ii) – VPN Connections: Monitor remote access methods and users

    FERPA Controls - VPN Connections
    Available for: Fortigate, Cisco ASA, WatchGuard, GlobalProtect, SonicWall, Sophos

    FERPA 99.31(a)(1)(iv)(B) – Firewall Traffic: Analyze allowed/blocked connections at perimeter

    FERPA - Allowed Firewall Traffic
    FERPA - Blocked Firewall Traffic

    FERPA 99.31(a)(1)(ii) – IDS/IPS Alerts: Identify potential intrusion attempts and malware

    FERPA - IDS/IPS Alerts 
    Available for: Fortigate, Sonicwall, PaloAlto, Checkpoint, Sophos XG, Umbrella

    FERPA 99.31(a)(1)(ii) – USB Device Usage: Detect unauthorized devices plugged into endpoints

    FERPA - USB Device Attached
    Available for: Windows

    FERPA Controls - Mounted Device
    FERPA Controls - USB Device Attached
    Available for: MacOS

    FERPA 99.31(a)(1)(ii) – Account Lockouts: Find accounts locked due to excessive failed logins

    FERPA - Account Lockouts
    Available for: Windows

    FERPA 99.31(a)(1)(ii) – Password Resets: Track password changes for awareness of compromised accounts

    FERPA - Password Change
    Available for: Windows

    FERPA - Azure Password Change
    Available for: Azure

    FERPA 99.31(a)(1)(ii) – Logins by Location: Spot access from unfamiliar regions

    FERPA - Logins from Outside the US
    FERPA - Logins from Outside the UK
    FERPA - Logins from Outside the AUS
    FERPA - Logins from Outside the CA
    Available for: Azure, Microsoft 365, Duo Security, Okta

    FERPA 99.31(a)(1)(ii) – System Changes: Record critical configuration and policy changes

    FERPA - Windows GPO Updates
    Available for: Windows

    FERPA - Azure Policy Changes
    Available for: Azure

    FERPA Firewall Configuration Change
    Available for: Fortigate, Cisco ASA, SonicWall, Sophos XG

    How Can I Access the FERPA Reports?

    Blumira customers can use global and saved reports to easily access FERPA compliance reports, as well as many other reports to analyze the logged events that you send Blumira. 

    To view a CIS global report or one of your saved reports, follow these easy steps:

    1. Navigate to Reporting > Report Builder. Click to open the additional options menu (the three dot menu seen on the right side).
    2. Click Load Saved Report
    3. Type FERPA into the search box at the top of the Saved Reports screen.
    4. In the Saved Reports window, click the report that you want to use, ensuring that it matches your integrated data source(s).

    Get more tips on how to use Blumira’s Report Builder in our documentation article, Using global and saved reports. Watch the video below to learn more about using Report Builder:

    Blumira For Compliance: Easy & Effective Security For SMBs

    It’s easy to help meet or support multiple compliance controls using Blumira’s SIEM + XDR platform. With our platform backed by a 24/7 security operations team, organizations get 24/7 coverage – there’s no need to hire full-time analysts. See our other posts on NIST compliance reports, ISO reports, and the different compliance frameworks we support.

    There’s a few different ways you can get started with Blumira:

    • Free SIEM – Choose up to 3 cloud integrations, set up in minutes, send logs to Blumira and start seeing security value right away. Our Free SIEM gives you a limited version of our product with 14 days of data retention.
    • Try SIEM + XDR Free – Sign up for a free 30-day trial of Blumira’s XDR edition up and running to experience the full SIEM, endpoint visibility and automated response platform. You will need to sign up for a free SIEM account, go to the left menu, then click Learn More > Start Free Trial to activate your XDR trial.
    • See a Demo – Not ready to try Blumira yet? Watch our product demo video or contact our team to walk through a demo of Blumira’s XDR Platform to get all of your questions answered.
    • Are you an MSP? Check out our MSP Program with NFR licensing for partners.

    Thu Pham

    Thu has over 15 years of experience in the information security and technology industries. Prior to joining Blumira, she held both content and product marketing roles at Duo Security, leading go-to-market (GTM) and messaging for the portfolio solution Cisco Zero Trust. She holds a bachelor of science degree in...

    More from the blog

    View All Posts