Cyber Security Audit and Internal Scrutiny


Discover cyber security risks and build overall cyber resilience with independent assurance

Download-report Slef-assessment Choice Stage1-Report report-pdf2-1 wire16 wire17

The Secure Schools internal audit service is for schools and trusts seeking independent assurance about the security of their information systems, policies and processes. Our unique framework and approach has been developed by industry experts who understand the challenges faced by the education sector.

We've developed a standard that represents an appropriate level of cyber security for UK schools and trusts, incorporating the latest expectations from the DfE and ESFA, along with guidance from the National Cyber Security Centre (NCSC) and Cyber Essentials and IASME Cyber Assurance standards.

Our approach

We have refined our approach over years of working with schools and trusts of all sizes. Solely working with the education sector enables us to remain at the forefront of the latest developments and regulations, as well as continuously engaging with school and trust leaders to understand and respond to the unique challenges they are facing.

Self- Evaluation


Assessor-led audit

Audit-mf_Risk classifications

Will an assessor-led audit help us to prepare for Cyber Essentials?

Yes - in fact, we are one of the only Cyber Essentials Certification bodies that work exclusively with schools and academy trusts. If you wish to certify to Cyber Essentials or IASME Cyber Assurance, the report we deliver will enable you to work through the action plan, which is provided with an assessor-led audit.