Information System Security Controls and Data Security in Kiriri Women’s University of Science And Technology, Kenya.

Abstract

Despite adoption of various measures to safeguard data in universities in Kenya, data insecurity cases are still reported. Information systems replacing manual processes and thus simplifying work and increasing capacity which in turn has led to increased efficiencies. Information systems are useful in collection, processing, storage, retrieval and communication of information to the relevant users in a timely manner. Adoption of information systems come with the challenge of maintaining security. Various controls have been enforced to ensure that the systems are protected and thus enhance data confidentiality, integrity and availability. According to the United Kingdom General Data Protection Regulations, all data in a university must be protected from unauthorized access. However, data insecurity is still reported in many institutions of higher learning. Institutions are having challenges in monitoring revenue and tracking students’ academic progress risking the credibility of the awards given. This study endeavoured to establish the influence of information systems security controls on data security in Kiriri Women’s University of Science and Technology, Kenya. The study was guided by the following specific objectives; to determine the influence of administrative controls, technical controls and physical controls on data security in Kiriri Women’s University of Science and Technology. A descriptive research design was used for the study. Using stratified sampling technique, a sample of 55 respondents was included in the study drawn from the population of 122 information system users. The researcher used a questionnaire for data collection which was tested through a pilot study to establish the validity and reliability. The data collected was analyzed using the Statistical Packages of Social Sciences 21 (SPSS) program. Frequency distributions, percentages, correlation and regression analysis were computed and interpretations made. The studies established that administrative, technical and physical controls are correlated to data security in information system used in universities. From the data analysis, administrative, technical and physical controls were all positively correlated to data security. Regression analysis established that the changes in the level of data security in the university’s information systems to a large extend are explained by the changes in administrative, technical and physical controls. The study thus established that enhancing information system controls greatly help in mitigating data insecurity in information systems used in Kiriri University.