Cyber Gap & Leak Path Assessment.
Find the account, cloud, device, email, backup and network weaknesses that could realistically lead to student data exposure.
What it checks
Security gaps translated into student-data risk.
The assessment is not generic pentesting by default. It analyses school-approved evidence to find practical leak paths and priority fixes.
- MFA coverage and privileged accounts
- Dormant, shared and high-risk accounts
- Google/Microsoft external sharing exposure
- OAuth, SSO and third-party app permissions
- Email forwarding, spoofing and mailbox risks
- Backups, patching, devices and ransomware readiness
- Network segmentation indicators and exposed services
$ edsecure analyse identity-export.csv
✓ 413 users parsed
! 7 privileged accounts need review
! 16 inactive accounts remain enabled
✓ Mapped likely data exposure paths
✓ IT remediation list generated
Leak-path examples
Show the path, not just the control failure.
Weak account + shared drive
An account without MFA also has access to folders containing student reports.
Dormant user + active mailbox
An ex-staff account remains enabled and external forwarding rules are not reviewed.
Broad OAuth app + student files
A third-party app has broad file access and unclear vendor controls.
Prioritise the gaps most likely to expose student data.
Get an IT fix list, principal summary and board-ready risk view.