Project part 4

didosld

Securityawarenesstraining1.pdf

Home >Information Systems homework help >Project part 4

Doyin Adebowale

ITC762

Security awareness training

The reason for writing this memo is to properly explain the information security system at

Premier University and address possible concerns that may arise if we do not employ required

security awareness training to the staff ad faculty. The University’s IT department had previously

outlined that their GLBA standards are mandatory. Below is a condensed version of the whole text,

which includes the FTC's interpretation on how to adhere. Safeguards Rule necessitates

organizations to produce a documented information security strategy that outlines their policy to

secure consumer details (EDUCAUSE, 2019). As part of the strategy, each institution should:

i. Have one or even more personnel in charge of coordinating the company's information

security program. [CIO, CISO, IT Dept.]

ii. Each important part of an institution's activity should be assessed for any danger to customer

details and the efficacy of present measures, and also the efficiency of present standards for

monitoring these dangers should be examined. [Worker training and management]"

As you can remember, the cyber event that took place some time back tarnished this

institution's credibility in the education sector tarnished in addition to affecting students and

professors whose records had been leaked. To reduce the possibility of a security breach at Premier

University, our staff and faculty must be educated on a set of governing security standards. Our

faculty and staff might be at risk of another cyber-attack if they don't receive this essential training.

(Moallem, 2019)

For a variety of rationales, colleges and universities are appealing targets for criminals,

increasing the necessity for security awareness training. One rationale is that health care or

financial firms, schools and universities contain a wide range of important and confidential data

like social security numbers, financial data, hospital information, intellectual property and

revolutionizing research. When it comes to higher education's open access culture and delegated

departmental or unit-level governance and also syndicated access to information or data, it's an

extremely vulnerable target for unallowed access, malware, and insecure internet utilization.

(Khader et al., 2021)

Staff and faculty are better equipped to identify phishing emails when they get frequent

security awareness training and utilize phishing security tests more often (Moallem, 2019). A

robust cybersecurity plan relies heavily on it. Unallowed access can still be prevented even with

many levels of firewall and antivirus security, but these measures alone aren't enough to keep

hackers out. Individuals are more susceptible than systems, hence cyber thieves attack humans

more often than systems. All stockholders should be informed about the dangers they encounter,

and how crucial it is to include cyber-security in their everyday routines.

A security awareness training program decreases the dangers and likelihood of insecurity

events and allows the whole staff to better safeguard themselves and their company. A look at what

the workforce knows and doesn't know when it comes to information security privacy best

standards can be achieved through security awareness training. Providing staff and faculty the

knowledge and resources they require to be safe from hackers is an important part of creating a

security culture at any company. (Khader et al., 2021)

To sum up, I am obligated to explain our institution's security requirements to you and the

other group of the governing board. In my opinion, our university may be held responsible for

losses and vulnerable to litigation as a result of prospective cyber events or attacks if we don't close

these security vulnerabilities. I appreciate your ideas on this problem, and I'd be happy to meet

with you to discuss it more.

References.

EDUCAUSE. (2019, April 10). The EDUCAUSE information security almanac 2019. Library |

EDUCAUSE. Retrieved November 18, 2021, from

https://library.educause.edu/resources/2019/4/the-educause-information-security-almanac-

2019

Khader, M., Karam, M., & Fares, H. (2021). Cybersecurity awareness framework for academia.

Information, 12(10), 417. https://doi.org/10.3390/info12100417

Moallem, A. (2019). Faculty cybersecurity awareness. Cybersecurity Awareness Among Students

and Faculty, 53-57. https://doi.org/10.1201/9780429031908-4

https://library.educause.edu/resources/2019/4/the-educause-information-security-almanac-2019

https://doi.org/10.3390/info12100417

https://doi.org/10.1201/9780429031908-4