Assessment of information technology security management system a case of colleges of education in the Bono region of Ghana

Abstract

Higher Educational institutions benefit greatly from information systems. Information security (IS) is an intense issue of the modern-day, it discusses the techniques and methodologies used to secure confidential, private, and sensitive information or data in print, electronic, or any other form against unauthorized access, use, misuse, disclosure, destruction, modification, or disruption. As a result, to maintain a high level of performance and remain competitive, higher education institutions invest a significant amount of money and effort in obtaining and managing information. The purpose of this study is to give us a better understanding of Information Technology security, strategies and practices in Colleges of Education in the Bono Region of Ghana. This research was a case study of two Colleges of Education in the Bono Region. A total of 62 respondents were purposively sampled for the study. Online Questionnaires was used to achieve the study’s objectives with the target population comprising Administrators, Tutors, and IT personnel of the selected colleges of education. The findings revealed that the information security programs had inadequate senior management support and oversight. With no education or training programs accessible to tutors in the Colleges of Education, there is poor knowledge of information security. The study concludes among others that, the majority of the groups at the examined Colleges of Education lacked adequate knowledge and security implementation, indicating the need to activate the administrators’ duties to deploy a well-designed information security system. The study, therefore, concluded that, the colleges should organize training on information security for all staff to equip them with the required knowledge to manage information in the colleges.