We are pleased to announce the launch of a brand new cyber-security report that looks into how well schools are protected throughout England and Wales. In partnership with the Institute of Cyber Security for Society at the University of Kent and supported by Bitdefender, this report provides an up-to-date review around the current state of cyber-security.
Gathering responses from a survey we ran last year, we have been able to compile a list of findings around behaviours, issues and risks within the field of cyber-security for schools. Those responses to the survey have accumulated to represent around 66,800 students in education.
Cyber Security: Key Findings
Data gathered from the survey has shown many interesting findings around how well schools have implemented cyber security through policy and practice as well as what risks are currently being posed towards their communities. Some of the top trends include:
- 62% of schools have not received any cyber security training
- Out of schools who reported a cyber-attack, 48% were Ransomware attacks
- 31% of respondents do not have an IT security policy
- 17% say they have no cyber security concerns
- 76% of respondents say the internet is key to their job
The report has highlighted where considerable gaps are in how schools approach cyber security. As well, the need for more resources and support is apparent throughout, in order to make positive change and lead towards better protection for schools.
The report concludes with key actions that schools should take away. These include:
- More investment towards appropriate guidance/ training and staff awareness
- Reviewing of current policy
- Assessment of risks and potential impacts
- Maintenance of recovery and response plans
Andrew Williams (Cyber Security Lead at SWGfL) said:
With cyber and information security continuing to threaten our schools, this report highlights just how important it is that educational establishments put cyber security as their number one entry on the risk register. It’s clear that educational establishments continue to lack resilience against cyber attack.