education foi blog

The U.K. Education Sector Achieves a 72% Reduction In Cybersecurity Incidents

According to a Freedom of Information Request submitted by ISMS.online, the Department for Education has reported a dramatic reduction in cybersecurity incidents over the last five years.

The data identified that whilst in 2018, the Department for Education recorded 139 cybersecurity incidents, in 2022, they reported only 38.

The Data Breakdown

The number of cybersecurity incidents reported by the Department for Education over the last five years are as follows:

• 1st January 2018 – 31st December 2018: 139
• 1st January 2019 – 31st December 2019: 154
• 1st January 2020 – 31st December 2020: 56
• 1st January 2021 – 31st December 2021: 67
• 1st January 2022 – 31st December 2022: 38

How Has The Education Sector Reduced Its Cybersecurity Incidents

A recent report published by NCSC at the end of 2022 echos the findings ISMS.online have uncovered with their Freedom of Information request. The survey, which had responses from over 800 schools, found that institutions are taking cyber resilience seriously, with;

100% using firewall protection
99% using an antivirus solution
96% patching software regularly
74% using 2-step verification (2SV) for their most important accounts

This is a dramatic improvement from the previous 2019 report, with cybersecurity fundamentals receiving the most significant focus from education providers to establish reliable information and data privacy foundations.

Levels of awareness have also increased significantly within the sector, with over a 30% increase in cybersecurity and information security training being delivered within the sector. 55% of senior leaders within the sector, such as school governors and managing bodies, also now receive regular updates on cyber and information security as part of their duties and 47% report feeling confident that they could tackle incidents should they occur.

Staying Ahead of the Cyber Risk Landscape

However, the survey also found that 78% of schools have experienced at least one type of cybersecurity incident mentioned in the audit, with 21% of institutions falling victim to ransomware attacks, 73% reporting phishing compromise and 18% having important information made unavailable whether temporarily or permanently.

As a result, schools are reviewing their contingency plans for a cyber breach or attack, with 53% stating that they do not have appropriate documents in place. In fact, just 33% of education providers surveyed had a cyber security policy, a risk register and a business continuity plan which highlights a significant capability gap.

The report also highlighted that schools need to focus on improvements to security, with 4% having no backup facilities, 26% not implementing multi-factor authentication, and 25% not limiting staff access to USB devices. Over 19% of institutions participating also reported that it took them more than three weeks to recover from a critical incident.

Sam Peters, Chief Technology Officer at ISMS.online, argues, “Schools should adopt robust strategies that enable ongoing maintenance and cyber resilience. Information security frameworks such as ISO 27001 could be a solid foundational tool in establishing and maintaining this.”

Peters highlights, “Not only does ISO 27001 require risk assessments, the creation of clear infosec policies and continuous monitoring and improvement, but it also helps ensure compliance with regulations such as GDPR and Family Education Rights and Privacy Act.

Best Practices For Improving Cybersecurity In the Education Sector

There are a variety of critical areas educational institutions must explore to improve their information and cyber security. Including:

    1. Cybersecurity frameworks: Adopting cybersecurity frameworks such as ISO 27001 can help education institutions lay sustainable information security and secure cyber foundations, establish a comprehensive cybersecurity program and identify areas for improvement. Frameworks enable a more sustainable and scalable approach to effective information, data and cyber security and can help manage costs too.
    2. Security software: Education institutions can use firewalls, antivirus software, and intrusion detection systems to protect their networks and systems from cyber threats.
    3. Two-factor authentication: Implementing two-factor authentication can help prevent unauthorised access to accounts and sensitive information.
    4. Password management tools: Password management tools can help education institutions ensure that passwords are strong, unique, and changed regularly.
    5. Security awareness training: Providing regular security awareness training to staff and students can help them understand the risks associated with online activity and how to protect themselves and the institution.
    6. Vulnerability scanning and penetration testing: Regular vulnerability scanning and penetration testing can help education institutions identify weaknesses in their systems and networks and address them before cybercriminals can exploit them.
    7. Incident response plan: Having an incident response plan can help education institutions respond quickly and effectively to cyber incidents, minimising the damage and restoring operations as soon as possible.

 

A comprehensive and proactive approach to information and cyber security is critical to protecting education institutions and their sensitive data from cyber threats.

The Journey Continues

The education sector has made considerable strides in improving cyber resilience, as highlighted by the 72% reduction in cyber incidents over the last five years.

However, Luke Dash, CEO at ISMS.online, points out that “as educational institutions face increasing financial pressures, with the cost of living crisis placing additional burdens on them, and cybersecurity budgets get ever tighter, the risk is that underinvestment now could reverse the positive steps the sector has taken”.

With “the cyber landscape moving so rapidly, educational institutions must continue to invest in resources, training and awareness to stay ahead of the next significant attack vector”, Dash concludes.

Unlock Your Compliance Advantage

If you’re looking to start your journey to better cybersecurity, we can help.

Our ISMS solution enables a simple, secure and sustainable approach to cybersecurity and information management with ISO 27001 and over 50 other frameworks. Realise your competitive advantage today.

Speak To An Expert

Explore ISMS.online's platform with a self-guided tour - Start Now