Cloud Computing Security, Protecting University Information

Cybersecurity is the study of protecting information and systems. One of the most secure ways of protecting information online is through cloud services when used appropriately. In St. Mary’s university, cloud computing adaption has rapidly grown and evolved over the years. However, the protection and safety of students and staff’s information is still unsteady, which prompted the evaluation and survey of this research. In this paper, a risk analysis is performed on one of the university’s cloud portal (canvas) to identify and mitigate potential security vulnerabilities found in the portal. Once the vulnerabilities have been identified, the university’s existing controls, risks, likelihood, and impact levels are then mapped to a risk register. Suggested and reliable security controls according to NIST SP 800-53A are then implemented to mitigate these vulnerabilities. The last phase of the analysis, risk monitoring is implemented using the NIST 800-39 risk monitoring plan.