Abstract
The demands for information security in higher education will continue to increase. Serious data breaches have occurred already and are likely to happen again without proper risk management. This paper applies the Comprehensive Literature Review (CLR) Model to synthesize research within cybersecurity risk by reviewing existing literature of known assets, threat events, threat actors, and vulnerabilities in higher education. The review included published studies from the last twelve years and aims to expand our understanding of cybersecurity’s critical risk areas. The primary finding was that empirical research on cybersecurity risks in higher education is scarce, and there are large gaps in the literature. Despite this issue, our analysis found a high level of agreement regarding cybersecurity issues among the reviewed sources. This paper synthesizes an overview of mission-critical assets, everyday threat events, proposes a generic threat model, and summarizes common cybersecurity vulnerabilities. This report concludes nine strategic cyber risks with descriptions of frequencies from the compiled dataset and consequence descriptions. The results will serve as input for security practitioners in higher education, and the research contains multiple paths for future work. It will serve as a starting point for security researchers in the sector.
Subject
Computer Networks and Communications
Reference72 articles.
1. The least secure places in the universe? A systematic literature review on information security management in higher education
2. Lessons learned from university data breaches;Ncube;Palmetto Bus. Econ. Rev.,2010
3. Cyber tHreats to the Education Industrywww.fireeye.com
4. A Comparative Analysis of University Information Systems within the Scope of the Information Security Risks;Yilmaz;TEM J.,2016
5. Why Cyber Attackers Are Targeting Higher Education, and What Universities Can Do about Itwww.fireeye.com
Cited by
47 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献