School Staff – Cyber Session

Thank you for attending a cyber security session for school staff with the SEROCU Cyber Protect team. If you have any feedback at all, we would love to hear it in order for us to develop and tailor our resources. We can only make this free service better if you let us know what works, and what doesn’t.

If you took part on MS Teams, we would love for you to take just a couple of minutes to complete a survey about the presentation. There are only nine short, mostly multiple-choice questions. This opens in a new window – close it once complete.

If you have any other comments, positive or constructive, please email us at:


Action List

Phishing

Resources:


Securing Accounts & Devices

Passwords, 2FA & Privacy

Resources:

Device Security

  1. Review device security – in particular:
    1. Use Antivirus / Antimalware software on every device that can have it – think desktops, laptops, tablets, smartphones. Choose based on reviews from trustworthy sources and based on your needs. NB: Apple devices – Apple restrict the type of software which can be installed and strictly the products on offer are not antivirus software. The security software available may still prevent you falling for phishing and bring other benefits
    2. Check that you have not inadvertently disabled the ‘firewall’ on your computers and router – use a search engine to find guidance for your particular device
    3. Use a Virtual Private Network (VPN) to protect your browsing if you use public WiFi hotspots (e.g. in a coffee shop). Use your 4G data plan as an alternative (encrypted by default to the mast).
  2. Install updates to your devices as soon as possible. Find out how to update more obsecure devices like smart TVs and home broadband routers – use a search engine to find a guide. Compromised, out of date devices (like broadband routers) are unwittingly used by cyber criminals with alarming frequency to attack others.

Resources:

Backups

  1. Backup your personal data on a regular basis to an ‘air-gapped’ solution (i.e. disconnected on completion). Consider automated backups to the ‘cloud’ – e.g. Apple iCloud, Google Drive… If using the cloud, check it is working as intended on a regular basis and double-check as a minimum:
    1. The account has a strong password (stored in a Password Manager or use three random words)
    2. 2FA is enabled

Resources:


Your Role at School

  1. Understand your role in a cyber incident at school, in particular:
    • How do you report phishing?
    • How do you escalate other types of incident?
    • What actions does your school expect you to take in the event you click the wrong link, or something is going wrong on your machine?

Cyber Safeguarding

  1. Teach Pupils about using technology safely, lawfully and ethically

Resources:


Other Information

Other Resources:

Reporting Cybercrime: