Information Security Practices in Universities in Kenya
Data security, which is synonymously known as information security (IS) involves the protective measures that are applied to safeguard the confidentiality, integrity and availability (CIA) of databases, data resource applications and websites for an organization. Automation has taken over manual operations within universities in Kenya, hence making practices around data and information security to be of great concern. This study aimed at determining the elements of data security and investigating the information security best practices around the data security elements within the universities in Kenya. The study is based on descriptive and explorative in nature. It is descriptive as it adopted a review of secondary materials – the journals in the field of information security to highlight the elements of data security. It then explored the practices adopted to safeguard information systems security within the universities through questionnaire based data collection and analysis through SPSS to capture vital measures of central tendencies in the data set. The study found the practices around information/data security elements were not to the expectation within the universities. It recommends that to ensure effective management of information security, the information security practices should be enhanced in the universities.