Cybersecurity Risk Assessment: Modeling Factors Associated with Higher Education Institutions

Most universities rely heavily on Information Technology (IT) to process their information and support their vision and mission. This rapid advancement in internet technology leads to increased cyberattacks in Higher Education Institutions (HEIs). To secure their infrastructure from cyberattacks, th...

Full description

Saved in:
Bibliographic Details
Published in:International journal of advanced computer science & applications 2022, Vol.13 (8)
Main Authors: Ganesen, Rachel, Bakar, Asmidar Abu, Ramli, Ramona, Rahim, Fiza Abdul, Zawawi, Md Nabil Ahmad
Format: Article
Language:English
Subjects:
Cybersecurity
Decision making
Evaluation
Higher education
Higher education institutions
Information technology
Risk acceptance
Risk assessment
Risk levels
Risk management
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Most universities rely heavily on Information Technology (IT) to process their information and support their vision and mission. This rapid advancement in internet technology leads to increased cyberattacks in Higher Education Institutions (HEIs). To secure their infrastructure from cyberattacks, they must implement the best cybersecurity risk management approach, which involves technological and education-based solutions, to safeguard their environment. However, the main challenges in existing cybersecurity risk management approaches are limited knowledge of how organizations can determine or minimize the significance of risks. As a result, this research seeks to advance understanding to establish a risk assessment model for universities to measure and evaluate the risk in HEIs. The proposed model is based on theoretical aspects that we organized as follows: First, we review the existing cybersecurity frameworks to identify the suitability and limitation of each model. Next, we review current works on cybersecurity risk assessment in HEIs to evaluate the proposed risk assessment approaches, scope and steps. Based on the information gathered, we developed a risk assessment model. Finally, we conclude the study with directions for future research. The result presented from this study may give an insig1ht for HEIs staff to analyze what is to be assessed, how to measure the severity of the risk, and determine the level of risk acceptance, improving their decision-making on risk management.
ISSN:2158-107X
2156-5570
DOI:10.14569/IJACSA.2022.0130843