A collaborative cybersecurity framework for higher education
Abstract
Purpose
The purpose of this paper is to present the educational computer emergency response team (EduCERT) framework, an integrated response mechanism to bolster national cybersecurity through collaborative efforts in the higher education sector. The EduCERT framework addresses this gap by enhancing cyber security and mitigating cybercrime through collaborative incident management, knowledge sharing and university awareness campaigns.
Design/methodology/approach
The authors propose an EduCERT framework following the design science methodology. The framework is developed based on literature and input from focus group experts. Moreover, it is grounded in the principles of the technology-organization-environment framework, organizational learning and diffusion of innovations theory.
Findings
The EduCERT has eight components: infrastructure, governance, knowledge development, awareness, incident management, evaluation and continuous improvement. The framework reinforces national cybersecurity through cooperation between universities and the National Computer Emergency Response Team. The framework has been implemented in Jordan to generate a cybersecurity foundation for higher education. Evaluating the EduCERT framework’s influence on national cybersecurity highlights the importance of adopting comprehensive cyber-security policies and controls. The framework application shows its relevance, effectiveness, adaptability and alignment with best practices.
Research limitations/implications
Despite the impact of applying the framework in the Jordanian context, it is essential to acknowledge that the proposed EduCERT framework’s practical implementation may encounter challenges specific to diverse international educational environment sectors. However, framework customization for global applicability could address varied educational institutions in other countries.
Practical implications
Furthermore, the proposed EduCERT framework is designed with universal applicability that extends beyond the specific country’s context. The principles and components presented in the framework can serve as valuable design advice for establishing collaborative and resilient cybersecurity frameworks in educational settings worldwide. Therefore, the research enhances the proposed framework’s practical utility and positions it as an invaluable contribution to the broader discourse on global cybersecurity in academia.
Originality/value
This paper enhances national cybersecurity in the higher education sector, addressing the need for a more integrated response mechanism. The EduCERT framework demonstrates its effectiveness, adaptability and alignment with best practices, offering valuable guidance for global educational institutions.
Keywords
Acknowledgements
The authors of this paper express their sincere gratitude to the experts and professionals who generously contributed their time and expertise in evaluating the framework presented in this study. The valuable insights, feedback and judgments provided by these individuals have significantly enriched the development and refinement of the framework. The authors would like to acknowledge their significant contributions in assessing the framework’s relevance, effectiveness, feasibility, scalability, alignment with best practices, measurability and adaptability. The expertise and dedication of those professionals have been instrumental in shaping the proposed framework and ensuring its alignment with the needs of the cybersecurity education community.
Citation
Otoom, A.A., Atoum, I., Al-Harahsheh, H., Aljawarneh, M., Al Refai, M.N. and Baklizi, M. (2024), "A collaborative cybersecurity framework for higher education", Information and Computer Security, Vol. ahead-of-print No. ahead-of-print. https://doi.org/10.1108/ICS-02-2024-0048
Publisher
:Emerald Publishing Limited
Copyright © 2024, Emerald Publishing Limited