Summer Institute for Communications and Marketing Pre-Institute Sessions-Cyber Security (2)

Cyber Security (2)
Pdf Summary
Data Governance is a system of processes, practices, and technology that organizations use to ensure data is secure, private, accurate, accessible, and usable. Cybersecurity, on the other hand, involves processes, technologies, and practices to protect data, networks, servers, and devices from malicious attacks. Both Data Governance and Cybersecurity are important because data is a valuable asset for organizations, and cyber threats can lead to significant financial and reputational damage.<br /><br />Cyber threats in higher education have been on the rise, with ransomware attacks and data breaches becoming more common. The cost of a data breach can reach up to $4.4 million per institution. Institutions hold valuable data, such as student, parent, financial, and patient data, and have an obligation to protect it. Privacy laws, such as FERPA, GDPR, and HIPAA, govern access to and use of personal information.<br /><br />To address cybersecurity, organizations can implement a Data Governance framework with features like business drivers, objectives, strategies, policies, enforcement, technology, and tracking. They can also focus on specific cybersecurity skillsets and partner with cybersecurity professionals. Frameworks like NIST CSF and ISO 27001 provide guidelines for cybersecurity practices. Risk assessment is crucial for identifying vulnerabilities, determining impact, prioritizing solutions, and developing an implementation plan.<br /><br />In terms of cybersecurity measures, organizations can employ basics like identity providers, authentication, encryption, backup protocols, and password requirements. Policies and guidelines for use, confidentiality, provisioning/deprovisioning, and data privilege can also be implemented. Procedures for data breach notification, vendor reviews, and risk assessments should be established.<br /><br />However, it is important to remember that cybersecurity is not just a matter of technology and processes; it also requires training and communication. Organizations should train staff on protocols and awareness, establish a culture of cybersecurity responsibility, and maintain awareness of vulnerabilities.<br /><br />Overall, organizations need to prioritize data governance and cybersecurity to protect their valuable data assets from cyber threats and ensure compliance with privacy laws.
Keywords
Data Governance
Cybersecurity
Secure data
Private data
Accurate data
Accessible data
Usable data
Cyber threats
Ransomware attacks
Data breaches