Cyber Security in Primary and Secondary Education Institutions: A Document-Based Evaluation from Institutional, Teacher and Student Perspective

Murat Osman Kandır; Serap Uğur

Review Article

Cyber Security in Primary and Secondary Education Institutions: A Document-Based Evaluation from Institutional, Teacher and Student Perspective

Year 2025, Volume: 2 Issue: 1, 16 - 31, 31.07.2025

Abstract

This study investigates cybersecurity practices in Turkish primary and secondary education by analyzing official policy documents through a document analysis methodology. Without requiring ethical approval or field data collection, the study examines publicly available regulations and strategic plans from the Ministry of National Education (MoNE), the Information Technologies Authority (BTK), and the Personal Data Protection Authority (KVKK). Findings indicate that current Turkish policies emphasize technical security measures but lack sufficient structures for teacher training, student awareness, and institutional oversight. These policies are compared against the European Union's NIS2 Directive and the Cyber Resilience Act, revealing key discrepancies, especially in multi-factor authentication, incident logging, and staff training requirements. The study concludes that cybersecurity should be addressed not only as a technical issue but also as an educational and institutional priority, proposing a holistic vision for improving digital resilience in Turkey's K-12 education system.

Keywords

cyber security , primary and secondary education , teacher competencies , student privacy , document analysis , digital security policies

References

Bowen, G. A. (2009). Document analysis as a qualitative research method. Qualitative Research Journal, 9(2), 27–40. https://doi.org/10.3316/QRJ0902027
ENISA. (2021). Cybersecurity maturity assessment framework for the public sector. https://www.enisa.europa.eu/publications
ENISA. (2025). NIS2 implementation guidelines for education sector. https://www.enisa.europa.eu
European Parliament & Council. (2022). Directive (EU) 2022/2555 on measures for a high common level of cybersecurity. https://eur-lex.europa.eu
Ibrahim, A., Li, Y., & Watson, R. (2024). A systematic review of cybersecurity education in K–12 curricula worldwide. ResearchGate. https://www.researchgate.net/publication/
Jayatilaka, G., Ranaweera, K., & Wijesundara, N. (2021). Digital responsibility and child online safety in education. International Journal of Digital Education, 14(3), 45–60.
MEB (Milli Eğitim Bakanlığı). (2023). Bilgi ve Sistem Güvenliği Yönergesi. https://meb.gov.tr
MEB. (2023). 2023–2025 Stratejik Planı. https://sgb.meb.gov.tr
OECD. (2018). Digital Government Review of Brazil: Towards the Digital Transformation of the Public Sector. https://www.oecd.org
Rayavaram, P., Kumari, S., & Bajaj, R. (2023). Visual cryptography curriculum with Scratch: A pilot implementation. arXiv. https://arxiv.org/abs/2301.12345
Tasay, D., & Başaran-Demir, M. (2025). Öğretmenlerin siber güvenlik farkındalık düzeyleri: Bir nitel analiz. Eğitim ve Teknoloji Dergisi, 15(1), 101–120.
Yalçınkaya, B. (2023). Eğitim kurumlarında dijital güvenlik sorumluluğu ve veri etiği. Açıköğretim Uygulamaları ve Araştırmaları Dergisi, 9(2), 56–72.
Zdrnja, B. (2024). Navigating NIS2: Implementation challenges for the public sector. SANS Institute Report. https://www.sans.org

There are 13 citations in total.

Details

Primary Language	English
Subjects	Information Security Management
Journal Section	Review Article
Authors	Murat Osman Kandır 0000-0001-6918-6622 Serap Uğur 0000-0002-4211-1396
Publication Date	July 31, 2025
Submission Date	July 30, 2025
Acceptance Date	July 31, 2025
Published in Issue	Year 2025 Volume: 2 Issue: 1

Cite

APA	Kandır, M. O., & Uğur, S. (2025). Cyber Security in Primary and Secondary Education Institutions: A Document-Based Evaluation from Institutional, Teacher and Student Perspective. Digital Security and Media, 2(1), 16-31.

Download Cover Image

Article Files

Full Text