false
en,es
Catalog
Summer Institute for Educational Fundraising Pre-I ...
Cyber Security (2)
Cyber Security (2)
Back to course
Pdf Summary
Data governance is a structured system of processes and technology that organizations use to ensure the security, accuracy, and accessibility of data. Cybersecurity, on the other hand, involves processes and technologies to protect data, networks, servers, and devices from malicious attacks. Both data governance and cybersecurity are important because data is often seen as an organization's most valuable asset and is valued in the millions per institution globally. <br /><br />Cyberthreats, such as phishing, malware, and ransomware attacks, pose significant risks to organizations, including higher education institutions. The University of California, San Francisco and the University of Utah both experienced ransomware attacks and paid significant ransoms. Data breaches in higher education have also resulted in fines and legal suits costing institutions millions of dollars. The value of institutional data, including student, financial, and patient data, makes higher education institutions attractive targets for cyberattacks. Compliance with privacy laws, such as FERPA and GDPR, is crucial for data privacy in higher education.<br /><br />To address these challenges, organizations can implement data governance frameworks that involve business drivers, objectives, strategies, policies, enforcement, technology, and tracking. Cybersecurity measures include critical infrastructure security, application security, network security, cloud security, and IoT security. Organizations should also focus on upskilling or hiring cybersecurity professionals, partnering with cybersecurity leaders, and implementing cybersecurity frameworks such as NIST CSF and ISO 27001. Risk assessment, malware protection, intrusion detection, device encryption, and backup protocols are essential cybersecurity practices.<br /><br />Furthermore, organizations need to establish policies and guidelines, such as policy of use, confidentiality policy, provisioning/deprovisioning guidelines, and data privilege policy/guidelines. Training and communication play a vital role in creating a cybersecurity-aware workforce and should include compliance training, cybersecurity literacy, and regular awareness campaigns. Ultimately, cybersecurity is a shared responsibility, and organizations must employ staff with cybersecurity skills, maintain awareness of vulnerabilities, implement preventive measures, and train all staff on cybersecurity protocols.<br /><br />In summary, data governance and cybersecurity are essential for organizations to protect their valuable data and mitigate the risks of cyberthreats. Implementing comprehensive data governance frameworks, cybersecurity measures, policies, and training programs can help organizations safeguard their data and stay ahead of evolving threats.
Keywords
data governance
cybersecurity
structured system
security
cyberthreats
higher education institutions
compliance
NIST CSF
ISO 27001
mitigate risks
×