An independent cybersecurity review across major California school districts and local government reveals a wide range of results. Many organizations handle sensitive communications daily, yet show significant gaps in email authentication and transport security.
Using data from audit.emailmenow.com, we evaluated each domain across email, website, and network security — including SPF, DKIM, DMARC, MTA-STS/TLS, and security headers.
Cybersecurity Scores of Major California School Districts
Overall compliance scores from audit.emailmenow.com, measured June 5, 2026. Re-run any domain at the link to verify.
| Rank | Organization | Domain | Overall Score | Performance Level |
|---|---|---|---|---|
| 1 | Long Beach USD | lbschools.net | 70% | Good |
| 2 | Oakland USD | ousd.org | 65% | Above Average |
| 3 | San Francisco USD | sfusd.edu | 60% | Above Average |
| 4 | Sacramento City USD | scusd.edu | 60% | Above Average |
| 5 | Fresno Unified | fresnounified.org | 55% | Average |
| 6 | Los Angeles USD | lausd.net | 54% | Average |
| 7 | San Diego Unified | sandiegounified.org | 48% | Below Average |
What the Results Reveal
- Scores span 70% down to 48% — only 1 of 7 organizations reach a “Good” (70%+) posture.
- 3 of 7 scored below 60%, leaving staff, students, patients, or clients exposed to phishing and impersonation.
- Weak authentication undermines state cybersecurity training and coordinator requirements and increases ransomware and business email compromise risk.
See also — national audit
Recommendations
- Enforce DMARC, strict SPF, and DKIM; add MTA-STS and security headers.
- Document cybersecurity policies and staff training appropriate to your sector.
- Run periodic domain audits before incidents drive emergency remediation.
Check any organization’s posture. Run a free Instant Cybersecurity Audit at audit.emailmenow.com/?industry=local-government.
Contact EmailMeNow IT Consulting for help with email security hardening and compliance documentation.
Source & methodology: Overall compliance scores from the free scan at audit.emailmenow.com, measured June 5, 2026 — each domain checked for email authentication (SPF, DKIM, DMARC), transport security (MTA-STS/TLS), website security headers, and network security. Re-run any domain at the link to verify.