All Services Back

11 tips on making your school cyber secure

Cyber security in education is about protecting the devices we use, and the services we access online from theft or damage. It is also about preventing unauthorised access to the vast amounts of personal data we store on these devices and in online accounts.

A cyber security incident can have a significant impact on a school, affecting its ability to function, the security of its data, and its reputation. School leaders and governing bodies need to be aware of cyber risks and adequately prepared in case of a cyber incident. Fortunately, schools can follow similar approaches to managing risks and responsibilities around GDPR and pupil safeguarding more generally to help prevent cyber incidents. Here are some practical steps you can take to improve your school’s cybersecurity:

  1. Back up your data Regularly create a backup copy of your school’s data and store it in a secure location other than your main workplace. This will ensure that in case of a security breach or disaster, you don’t lose everything.
  2. Use strong passwords Encourage all staff, volunteers, and anyone else involved in your school’s operations to use strong passwords on all devices, including smartphones, laptops, tablets, email accounts, and computers.
  3. Take care when working remotely Ensure that devices used for remote work are as secure as the ones used in the office. Be mindful of your surroundings, particularly when working in public places like cafes or on public transport.
  4. Be wary of suspicious emails Educate yourself and those working for you on how to spot suspicious emails. Checking for obvious signs such as bad grammar, requests for you to act urgently, and requests for payment will help you avoid being caught out. If it looks suspicious, don’t trust it – and warn your staff not to either.
  5. Install anti-virus and malware protection Make sure you have anti-virus and malware protection installed on all devices and keep it up-to-date. The National Cyber Security Centre has useful advice and guidance on cybersecurity.
  6. Don’t leave paperwork or laptops unattended Data breaches can occur when staff and volunteers leave paperwork or laptops unattended. Make sure you take steps to protect the personal data you hold by being vigilant and storing it securely away when it’s not in use.
  7. Make sure your Wi-Fi is secure Using public Wi-Fi or an insecure connection could put personal data at risk, so make sure you always use a secure connection when connecting to the internet.
  8. Lock your screen when you’re away from your desk Taking steps to lock your screen when you leave your desk is a simple thing to do, but it will prevent someone else from accessing your computer.
  9. Keep on top of who has access to what Restrict who has access to your IT systems and buildings. The fewer people with access, the better. Visitors should be clearly identifiable. Make sure you limit IT access to people who work for you, where possible.
  10. Don’t keep data for longer than you need it Staying on top of what personal data you hold will save you time and resources. It will also help you with your data protection responsibilities. Only keep what you need, for as long as you need it.
  11. Dispose of old IT equipment and records securely Before you get rid of them, make sure no personal data is left on personal computers, laptops, smartphones, or any other devices. You could consider using deletion software, or hire a specialist to wipe the data. This will ensure no one can access information they’re not supposed to see when you dispose of the equipment.

want more information, check out the following sites: https://www.ncsc.gov.uk/

want more help with your cyber security plan for your school, check out our IT support plans: https://nextgen-it.co.uk/services/curriculum-it-support/

Other services