A Comparative Analysis of University Information Systems within the Scope of the Information Security Risks
A Comparative Analysis of University Information Systems within the Scope of the Information Security Risks
Author(s): Rustu Yilmaz, Yildiray YalmanSubject(s): ICT Information and Communications Technologies
Published by: UIKTEN - Association for Information Communication Technology Education and Science
Keywords: Information security;risk analysis;ISO/IEC 27001;university information systems;risk analysis tools;Microsoft security assessment tool
Summary/Abstract: Universities are the leading institutions that are the sources of educated human population who both produce information and ensure to develop new products and new services by using information effectively, and who are needed in every area. Therefore, universities are expected to be institutions where information and information management are used efficiently. In the present study, the topics such as infrastructure, operation, application, information, policy and human-based information security at universities were examined within the scope of the information security standards which are highly required and intended to be available at each university today, and then a comparative analysis was conducted specific to Turkey. Within the present study, the Microsoft Security Assessment Tool developed by Microsoft was used as the risk analysis tool. The analyses aim to enable the universities to compare their information systems with the information systems of other universities within the scope of the information security awareness, and to make suggestions in this regard.
Journal: TEM Journal
- Issue Year: 5/2016
- Issue No: 2
- Page Range: 180-191
- Page Count: 12
- Language: English