CR Sidekick
Complete Self-Assessments Faster
CR Sidekick is an AI-powered self-assessment companion designed to guide K-12 administrators through the Cybersecurity Rubric 2.0 framework. Available as a Google Sheets add-on that lives in a convenient sidebar panel, it transforms what is typically a complex, manual evaluation process into an interactive, conversational experience.
Through natural conversation, the CR Sidekick walks you through structured self-assessments, asks targeted questions to gauge current practices, and provides curated resources and actionable recommendations for improvement.
How To Start Using the Cr Sidekick
Key Features
Guided Self-Assessments
Evaluate your maturity levels with conversational guidance that adapts to your responses.
Evidence-Based Evaluations
Use interactive checklists to document your existing cybersecurity policies, procedures, and practices.
Curated Resource Library
Receive personalised links to templates, checklists, and guidance for each rubric category.
Professional PDF Reports
Get summary reports that include maturity ratings, rationale, and prioritized next steps.
Seamless Integration
Use directly from Google Sheets for quick access and automatically save your session progress.
Security and Privacy
Keep data secure. Chat history and progress are stored locally and never on third-party servers.
Wondering What To Ask CR Sidekick?
You can interact with CR Sidekick in plain language, just type a question and press enter (or click the blue send button). Below are some common areas school administrators often need support and some related questions you can ask CR sidekick to get started.
Get Oriented
- Give me a plain-language overview of the Cybersecurity Rubric and why it matters for a school district.
- How do the six functions (Govern, Identify, Protect, Detect, Respond, Recover) fit together in practice?
- If I only have five minutes with cabinet, how would you explain this framework?
- Summarize the main goals of this rubric in 3–4 bullet points I can put on a meeting agenda.
Connect to Your Context
- We’re a mid-size K–12 district with limited IT staff. What parts of this rubric should we pay attention to first?
- We’re a small rural district. How would you suggest we scale this framework to our size?
- How can I use this rubric to have a productive conversation with our superintendent about risk?
- What would a realistic first-year outcome look like for a district like ours using this framework?
- We already have a technology plan. How can we map this rubric to what we’re already doing instead of starting from scratch?
- What roles or job titles typically need to be involved to implement this rubric well?
- We’re a small team. How can we share cybersecurity responsibilities across departments in a manageable way?
Clarify Terms
- Explain ‘Organizational Context’ in the GOVERN function with a simple example from a school district.
- What does it mean when the rubric talks about ‘maturity levels’? How should I think about those as a leader?
- When the rubric talks about ‘governance’ versus ‘operations,’ what’s the practical difference for us?
Plan Next Steps
- If we’re just getting started, what are three low-lift cybersecurity improvements we could make this semester?
- How can we use this rubric to build a one-year cybersecurity improvement plan?
- What kinds of questions should I be asking our technology director about incident response and recovery?
- Help me outline a phased approach: what should we tackle in the next 3 months, 6 months, and 12 months?
- A CCRE is coming to help us with a formal assessment in a couple of weeks. What kinds of data should we be prepared to provide?
Policies & Support
Privacy Policy
Review how we protect your information and keep your assessment data private.
Terms of Service
Review the terms for using CR Sidekick, including eligibility, acceptable use, third-party services, and limitations.
Get Support
Questions about CR Sidekick? Get quick help, guidance, and next steps from our team.