An assessment of cybersecurity performance in the Saudi universities: A Total Quality Management approach

Tahani Abdullah Abdurhman Alhumud; Abdulfattah Omar; Waheed M.A. Altohami

doi:10.1080/2331186X.2023.2265227

Cogent Education (Dec 2023)

An assessment of cybersecurity performance in the Saudi universities: A Total Quality Management approach

Tahani Abdullah Abdurhman Alhumud,
Abdulfattah Omar,
Waheed M.A. Altohami

Affiliations

Tahani Abdullah Abdurhman Alhumud: Department of Educational Sciences, College of Education, Prince Sattam Bin Abdulaziz University, Al-Kharj, Kingdom of Saudi Arabia
Abdulfattah Omar: Department of English, College of Science & Humanities in Al-Kharj, Prince Sattam Bin Abdulaziz University, Kingdom of Saudi Arabia
Waheed M.A. Altohami: Department of English, College of Science & Humanities in Al-Kharj, Prince Sattam Bin Abdulaziz University, Kingdom of Saudi Arabia

DOI: https://doi.org/10.1080/2331186X.2023.2265227
Journal volume & issue: Vol. 10, no. 2

Abstract

Read online

AbstractCybersecurity systems are crucial for safeguarding information assets across various sectors, including government, military, and commercial domains. In Saudi Arabia, cybersecurity has gained significant importance within the national security strategy, resulting in substantial investments in technologies to protect information assets, combat cyber threats, and preserve privacy. In light of Protection Motivation Theory, it is assumed that evaluating the performance of cybersecurity policies and measures (threat appraisal) is vital for their effective implementation (coping appraisal). This study focuses on evaluating the cybersecurity performance of Saudi universities. Employing a mixed-methods design, the study utilizes questionnaires and interviews to collect data. The participants include representatives from 10 Saudi universities, with 107 respondents for the questionnaire phase and 20 participants for the interviews. Diverse job categories and levels within the universities are represented to gather valuable insights from individuals with expertise in cybersecurity and Total Quality Management (TQM) processes. Findings showed that there is room for improvement in the cybersecurity practices of Saudi universities. Only a minority of participants reported regular risk assessments and timely addressing of identified risks. Additionally, participants expressed concerns about the lack of well-defined policies and procedures, insufficient training and awareness programs, and non-compliance with cybersecurity regulations and standards. A significant percentage of participants rated their organization’s cybersecurity performance as average or poor. However, the majority of participants affirmed the importance of cybersecurity in relation to strategic objectives and Total Quality Management. The study stressed the need for comprehensive approaches to cybersecurity, including risk assessment, policy development, training, compliance, and continuous monitoring.

Published in Cogent Education

ISSN: 2331-186X (Online)
Publisher: Taylor & Francis Group
Country of publisher: United Kingdom
LCC subjects: Education: Education (General)
Website: https://www.tandfonline.com/journals/oaed

About the journal

Abstract

Keywords