The least secure places in the universe? A systematic literature review on information security management in higher education

Bongiovanni, Ivano

doi:10.1016/j.cose.2019.07.003

Cited by 56 publications

(54 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Integration can be done by providing information from academic processes as services, using SOA principles (flexible, sustainable, reusable integration) and instruments to plot academic processes' variables [32]. The integration of SOA with academic processes possibly will pilot the creation and use of new learning settings.…”

Section: C) Analysis Of Soa and Cloud Technologymentioning

confidence: 99%

Service landscape for private universities in indonesia based on service oriented architecture and cloud technology

Renaldi

Santikarama

Djamal

et al. 2021

IJEECS

View full text Add to dashboard Cite

<p>Information technology (IT) has been widely adopted and is believed to improve academic processes’ efficiency and run private universities’ academic functions (PTSs) in Indonesia. Nonetheless, adopting diverse technologies for them will also create many challenges. PTSs are struggling to survive in terms of technological implementation, in the sense that the investment and implementation rate in the PTSs just cannot catch up with the technological advancement rate. Even when more PTSs are trying to transform into digital entities, the next problem will be system integration and flexibility. This study aims to overcome this problem by implementing a framework that can be both integrated and flexible while also serving the efficiency of investments. Many studies already suggested that Service Oriented Architecture (SOA) and cloud technology are the solutions.</p>Nevertheless, none has been able to define what standard services can be applied within those platforms. To determine this, we use the BIAN service landscape, which was translated from the banking industry, offering a comprehensive view of the business domain and business capabilities alongside its service functions. While BIAN offers common services throughout the same platform, we modify the framework using the OASIS model from SOA, which allows the framework to be flexible in complying with many platforms of databases, programming languages, and network infrastructures. We completed our study by defining one business area: academic processes, three business domains, 19 business capabilities, and 84 service functions. We are strongly confident that our findings and study results will act as a reference in creating a cloud-based platform for Indonesia’s higher education academic systems.

show abstract

Section: C) Analysis Of Soa and Cloud Technologymentioning

confidence: 99%

Service landscape for private universities in indonesia based on service oriented architecture and cloud technology

Renaldi

Santikarama

Djamal

et al. 2021

IJEECS

View full text Add to dashboard Cite

show abstract

“…Specifically, in the context of cyber security, most of the research in higher education has been done in risk management frameworks and standards whereas, the least focus is given to the governance and cultural awareness [19]. Due to which cyber security has not been implemented in higher education institutions in its true spirit.…”

Section: Literature Reviewmentioning

confidence: 99%

“…In line with this, [18], highlighted that generally higher education institutions do not have independent central security services due to lack of resources. As a result, they have to out-source these services, which are insufficient for cyber security [19]. The main reason for this inadequacy is the unique nature of educational institutions' security systems, which is radically different from other institutions' security systems [20].…”

Section: Literature Reviewmentioning

confidence: 99%

Bibliometric Analysis of Cyber Threat and Cyber Attack Literature: Exploring the Higher Education Context

Rahim¹

2021

Cybersecurity Threats With New Perspectives

View full text Add to dashboard Cite

In nearly all procedures involving students and faculty, higher education organizations make substantial use of computers and the internet. Little is known on the progress and development of literature on cyber threats and cyber attacks in this sector. This chapter fills this gap by examining the trends of literature on cyber threats and cyber attacks focusing on the higher education. Bibliometric analysis through Scopus database was employed to offer research ideas and trigger debates. Analyzed parameters include the number of document types, publications, authorship, citation, and subject areas, as well as the topographical dispersion of published research. The earliest publication could be seen in the year 2003, and since then 606 papers were published. The majority of publications were conference papers but merely 8.42% of those were open access. The results indicate that publications hit a plateau in 2018, with English becoming the main publication language. The most prominent country that has contributed to the literature is the United States. Nonetheless, the majority of the publications were contained by the subject area of Computer Science, hence it is relatively challenging to trace the progress in education context. This chapter presents a groundwork providing insights for others to probe into the topic further.

show abstract

“…Multiple frameworks are available to assess human intentions towards information security policies, but none of the frameworks can be used as a standard behavioral process model. All the frameworks defined in the extant literature are either specific to a sector (for example, finance, higher education) [25,26] or specific to various theories [18,24,27]. None of the previous studies has made an effort to develop a consolidated information security behavior process which can exhibit the transformation process from noncompliance to compliance.…”

Section: Introductionmentioning

confidence: 99%

Information Security Behavior and Information Security Policy Compliance: A Systematic Literature Review for Identifying the Transformation Process from Noncompliance to Compliance

et al. 2021

View full text Add to dashboard Cite

A grave concern to an organization’s information security is employees’ behavior when they do not value information security policy compliance (ISPC). Most ISPC studies evaluate compliance and noncompliance behaviors separately. However, the literature lacks a comprehensive understanding of the factors that transform the employees’ behavior from noncompliance to compliance. Therefore, we conducted a systematic literature review (SLR), highlighting the studies done concerning information security behavior (ISB) towards ISPC in multiple settings: research frameworks, research designs, and research methodologies over the last decade. We found that ISPC research focused more on compliance behaviors than noncompliance behaviors. Value conflicts, security-related stress, and neutralization, among many other factors, provided significant evidence towards noncompliance. At the same time, internal/external and protection motivations proved positively significant towards compliance behaviors. Employees perceive internal and external motivations from their social circle, management behaviors, and organizational culture to adopt security-aware behaviors. Deterrence techniques, management behaviors, culture, and information security awareness play a vital role in transforming employees’ noncompliance into compliance behaviors. This SLR’s motivation is to synthesize the literature on ISPC and ISB, identifying the behavioral transformation process from noncompliance to compliance. This SLR contributes to information system security literature by providing a behavior transformation process model based on the existing ISPC literature.

show abstract

The least secure places in the universe? A systematic literature review on information security management in higher education

Cited by 56 publications

References 35 publications

Service landscape for private universities in indonesia based on service oriented architecture and cloud technology

Service landscape for private universities in indonesia based on service oriented architecture and cloud technology

Bibliometric Analysis of Cyber Threat and Cyber Attack Literature: Exploring the Higher Education Context

Information Security Behavior and Information Security Policy Compliance: A Systematic Literature Review for Identifying the Transformation Process from Noncompliance to Compliance

Contact Info

Product

Resources

About