Secure Schools
Who we are
Secure Schools is a team of education sector cyber security experts, and we help trusts protect themselves against cyber-attacks. We provide the tools and training to operate a successful cyber security programme and build resilience against attacks.
Our innovative, easy-to-use software is the first cyber security application dedicated to UK schools and trusts. The platform offers staff awareness training, phishing simulations and cyber security policy document templates and can be managed at individual school or trust level.
Alongside the platform, we offer technical services such as cyber security audits and testing to meet the unique needs of schools and trusts.
By focusing on the education sector, we have a deep understanding of the cyber threats and risks schools and trusts face and build products and services to meet these needs. Schools taking their training can be reassured that it meets the latest cyber security guidance and expectations from authorities such as the DfE, Academies Handbook, ESFA, The Governance Handbook and guidance from the National Cyber Security Centre.
As well as building products and services specifically for schools and trusts, we price them to be accessible to the sector. We price on a per school basis, rather than per staff, with multi-school discounts.
Secure Schools works independently, alongside IT support or service providers, to help keep children safe in education, prevent school closures and empower schools to own and reduce their cyber security risk with confidence and autonomy.
What we do
The Secure Schools Platform
Our software platform is the first of its kind for the education sector and is built to support your whole organisation’s cyber security. Individual schools can buy the platform or it can be managed at trust level with different modules and training being rolled out when it suits your organisation.
The Training Module
The training module contains a bank of cyber security awareness training including the NCSC’s training for schools, giving you an easy way to manage, target and record staff training. All our courses are short and easy to access for staff. They finish with a short quiz and staff are rewarded with a certificate.
Our training courses
•Social Engineering
•The Dangers of Removable Storage Media
•Password Security
•Phishing Awareness
The Phishing Simulation Module
Our phishing simulations are based on the software that schools use, making them more realistic to how a targeted attack could look and can be sent to specific groups of staff. Detailed reports highlight the staff who may benefit from additional training.
The Policy Builder Module
Our policy builder contains a bank of the policies your school trust needs to meet the requirements of the DfE cyber security standards and Cyber Essentials. They are pre-written and easy to personalise and tailor to your organisation. The module enables you to allocate policies to all or specific staff and to request that they show their agreement to the policy by signing their name onto it, all within the software.
The Self-Evaluation Cyber Security Audit Module
The Secure Schools internal audit service is for schools and trusts seeking independent assurance about the security of their information systems, policies and processes. Our unique framework and approach has been developed by industry experts who understand the challenges faced by the education sector.
We've developed a standard that represents an appropriate level of cyber security for UK schools and trusts, incorporating the latest expectations from the DfE and ESFA, along with guidance from the National Cyber Security Centre (NCSC) and Cyber Essentials and IASME Cyber Assurance standards.
Each of our modules can be purchased separately and rolled out as and when it suits your organisation’s time scales.
Cyber security auditing and penetration testing
Our services include more advanced auditing and testing, which is known as penetration testing. This type of testing mimics the actions of a real-life hacker to check for vulnerabilities within organisations. Following the tests, we produce a report outlining our findings and recommendations for improving cyber security.
How we help
Everything that we build and develop is with the specific needs of schools and trusts in mind. We recently released a guide to the expectations placed on school trusts in our The School Cyber Security Handbook.
The School Cyber Security Handbook
Thhis free resource outlines the cyber security requirements placed on schools and trusts from the following organisations and papers.
•The DfE’s cyber security standards
•The RPA
•The Academy Trust Handbook
•The DfE’s Governance Hanbook
Click here to download your copy of the handbook. This is the link: https://hubs.la/Q021C0kn0
Secure Schools blogs
Our blogs are written to support school trusts to understand how and why schools are attacked and the key ways they can protect themselves.
Visit our blogs here: https://hubs.la/Q021C2W-0
Here are our latest ones.
Why and how do cybercriminals target schools?
This blog looks at the three key ways schools are targeted and gives guidance on how to protect from this type of attack.
Why schools should use a password manager
We explain why schools should use a password manager and outline the NCSC’s guidance about them.
How does cyber security support data protection
The UK General Data Protection Regulation (GDPR) requires that personal data is processed securely, using appropriate technical and organisational measures. As schools come under attack more and more from cyber criminals, cyber security should be one of the approaches schools use to protect the data in their care.
Three ways to protect yourself from a cyber attack
Cybercriminals use a variety of ways to enter into school networks and systems. We explain three easy ways you can help protect yourself and the school.
What is ransomware and how to protect against it
We explain in simple terms how schools can help to protect against this common form of attack.
