The cyber security standard is part of the DfE’s Digital and Technology Standards and set clear expectations for cyber security in education settings. You should be working towards meeting these expectations by 2030.
What the standards cover
The DfE cyber security standards are specifically designed for schools and colleges. They provide standards and guidance for:
- conducting a cyber risk assessment annually, and reviewing every term
- creating and implementing a cyber awareness plan for students and staff
- securing digital technology and data with anti-malware and a firewall
- controlling and securing user accounts and access privileges
- licensing digital technology and keeping it up to date
- developing and implementing a data backup plan and reviewing annually
- reporting cyber attacks
Why the standards are important
Cyber incidents and attacks have significant operational and financial impacts on schools and colleges. Meeting the cyber security standards will help you build your cyber resilience. They address the core principles of cyber governance, processes and strategy.
Read the standards