Following on from last weeks post, below are some further tips to help with cyber threats in education.
Backup Advice
Confirm Your Backups Are Working
Make sure your backup system is running properly. It’s important to carry out occasional test restores so staff are familiar with the process and confident that information can be recovered if needed.
Keep an Offline Copy
Always ensure you have an offline version of your backup. This copy should be recent enough to be useful if the school ever experiences data loss or a cyber incident that affects your main systems.
Back Up More Than Just Files
Remember to include device settings and any important system credentials in your backups (such as private keys or access tokens). This helps ensure the school can fully restore systems—not just data—quickly and safely.
Incident Response Plans
Keep Your Incident Response Plan Up to Date
Make sure your school’s incident response plan is current and reflects how you would manage a real‑world cyber or IT disruption. You can refer to the NCSC’s Incident Management guidance for best‑practice support.
Check Contact and Escalation Details
Review all escalation routes and emergency contact details to ensure they are accurate. In a fast‑moving incident, having the right information at hand makes all the difference.
Clarify Who Makes Decisions
Your plan should clearly state who has the authority to make key decisions — especially outside normal school hours. This helps avoid delays and ensures the right people can act quickly.
Ensure the Plan Works Even If Systems Are Down
Make sure your incident response plan — and the communication methods it relies on — are accessible even if your school’s main IT systems are unavailable. This could include printed copies or alternative communication channels.
