Education Security
Tools & Checklists
Essential Reading
School Cyber Risk Assessment
The DfE Cyber Security Standards (January 2023) require governors to ensure schools meet defined requirements across five domains. This tool shows where your school stands.
DfE Cyber Security Standards Checklist for Schools
DfE Cyber Security Standards: five domains, dozens of specific requirements — this checklist translates each into an evidenceable action for school governors and IT leads.
School GDPR Audit Template
ICO investigations of UK schools most commonly arise from ransomware attacks, unlawful data sharing, missing DPAs with EdTech vendors, and failure to report breaches within 72 hours.
EdTech Supplier Security Scorecard
UK GDPR Article 28: schools must ensure EdTech vendors provide sufficient guarantees of appropriate security before sharing pupil personal data. This is a legal requirement, not a recommendation.