Challenges of information security laws and legislations in Nigeria’s institutions of higher education: Views from Yola, Adamawa state

Ngboawaji Daniel Nte; Vigo Augustine Teru; Arifin Ridwan

doi:10.22219/raden.v4i2.35711

Authors

Ngboawaji Daniel Nte Department of Intelligence and Security Studies & Provost, College of Management and Social Sciences, Novena University, Nigeria
Vigo Augustine Teru Department of Intelligence and Security Studies & Provost, College of Management and Social Sciences, Novena University, Nigeria
Arifin Ridwan Faculty of Law, Universitas Negeri Samarang, Indonesia

DOI:

https://doi.org/10.22219/raden.v4i2.35711

Keywords:

implementation laws, information security, institutions of higher education, legislation

Abstract

The menace of threats against information security worldwide cannot be overemphasis. The whole gamut of statecraft, national security, public safety, international trade and indeed postmodernity revolves around information security. As a country, Nigeria is part of a global system facing this monumental threat and institutions of higher education are a subset of the vulnerability circle. This work therefore seeks to evaluate the challenges of implementation of information security laws and legislations in Nigerian institutions of higher education with special focus of higher education institutions in Yola, Adamawa State. Generally, the work investigated the impact of information security threats and attacks in institutions of higher learning, the role of security laws and legislations in combating these threats, the challenges of information security threats management and indeed possible solutions to these challenges. The work utilised a qualitative research method through the application of archival and documentary research, and Case study research (multiple case study) and interviews from a selected sample. Consequently, the study was able to evaluate the state of awareness of information security in this sector, the implementation challenges of the existing information security laws and regulations and offered valuable policy recommendations to the various stakeholders on how to implement sustainable information security laws and legislations to guarantee the protection of critical data assets not just in institutions of higher education in Nigeria but the entire country and in tandem with global best practice.

Downloads

Download data is not yet available.

References

Abdulrauf, L. A., & Fombad, C. M. (2016). The African union’s data protection convention 2014: A possible cause for celebration of human rights in Africa? Journal of Media Law, 8(1), 67–97. https://doi.org/10.1080/17577632.2016.1183283

Adewumi, A. (2022). Adequate protection’: An analysis of Nigeria’s data protection laws within an emerging global data protection framework. In Braz Dent J. (Vol. 33, Issue 1). https://dspace.library.uvic.ca/server/api/core/bitstreams/c4f94bc6-e987-4375-82fa-76bb3ffba2db/content

Al-Daeef, M. M., Basir, N., & Saudi, M. M. (2017). Security awareness training: A review. Lecture Notes in Engineering and Computer Science, 2229, 446–451. https://www.iaeng.org/publication/WCE2017/WCE2017_pp446-451.pdf

Almalki, S. (2016). Integrating Quantitative and Qualitative Data in Mixed Methods Research—Challenges and Benefits. Journal of Education and Learning, 5(3), 288. https://doi.org/10.5539/jel.v5n3p288

Anderson, R., & Moore, T. (2006). The economics of information security. Science, 314(5799), 610–613. https://doi.org/10.1126/science.1130992

August, T., August, R., & Shin, H. (2014). Designing user incentives for cybersecurity. Communications of the ACM, 57(11), 43–46. https://doi.org/10.1145/2629487

Bitsight. (2016). Bitsight insights report the rising face of cyber crime: ransomware. https://cdn2.hubspot.net/hubfs/277648/Insights/BitSight_Insights_-_The_Rising_Face_of_Cyber_Crime_Ransomware.pdf

Calder, A., & Watkins, S. (2015). IT governance: An international guide to data security and ISO 27001/ISO 27002. IT Governance Publishing. https://www.torrossa.com/it/resources/an/5813750

Chu, A. M. Y., & So, M. K. P. (2020). Organizational information security management for sustainable information systems: An unethical employee information security behavior perspective. Sustainability (Switzerland), 12(8), 1–25. https://doi.org/10.3390/SU12083163

Creswell, J. W. (2014). Research design: qualitative, quantitative, and mixed methods approaches 4th ed. https://books.google.co.id/books?id=4uB76IC_pOQC&printsec=copyright&hl=id#v=onepage&q&f=false

Desetty, A. G., Jangampet, V. D., & Pulyala, S. R. (2024). Phishing attacks: Evolving techniques, emerging trends , and countermeasure strategies. International Journal for Innovative Engineering and Management Research, 9(12), 985–991. https://www.researchgate.net/publication/376645699_Phishing_Attacks_Evolving_Techniques_Emerging_Trends_and_Countermeasure_Strategies

Disterer, G. (2013). ISO/IEC 27000, 27001 and 27002 for Information Security Management. Journal of Information Security, 4, 92–100. https://doi.org/10.4236/jis.2013.4201

Elhabashy, A. E., Wells, L. J., Camelio, J. A., & Woodall, W. H. (2019). A cyber-physical attack taxonomy for production systems: a quality control perspective. Journal of Intelligent Manufacturing, 30(6), 2489–2504. https://doi.org/10.1007/s10845-018-1408-9

Emmanuel, O. (2013). EXCLUSIVE: Jonathan awards $40million contract to Israeli company to monitor computer, Internet communication by Nigerians. PREMIUM TIMES. https://www.premiumtimesng.com/news/131249-exclusive-jonathan-awards-40million-contract-to-israeli-company-to-monitor-computer-internet-communication-by-nigerians.html

Garba, A., Musa, M. A., & Othman, S. H. (2020). A Study on cybersecurity awareness among students in Yobe: A quantitative. Et International Journal on Emerging Technologies, 11(5), 41–49. https://d1wqtxts1xzle7.cloudfront.net/64160387/A_Study_on_Cybersecurity_Awareness-libre.pdf?1597243536=&response-content-disposition=inline%3B+filename%3DA_Study_on_Cybersecurity_Awareness_Among.pdf&Expires=1735459622&Signature=NpaJtz~H0vpUprRAY27~EK60U2U

Grajek, S. (2018). Top 10 IT issues, 2018: The remaking of higher education. In Educause Review (Vol. 53, Issue 1). https://er.educause.edu/-/media/files/articles/2018/1/er181100.pdf%0Ahttps://er.educause.edu/articles/2018/1/top-10-it-issues-2018-the-remaking-of-higher-education

Hadzhikoleva, S., Orozova, D., Andonov, N., & Hadzhikolev, E. (2019). Generalized net model of a system for quality assurance in higher education. AIP Conference Proceedings, 2172(January 2022), 1–10. https://doi.org/10.1063/1.5133515

Hagen, J., Albrechtsen, E., & Hovden, J. (2008). Implementation and effectiveness of organizational information security measures. Information Management & Computer Security, 16(4), 377–397. https://doi.org/10.1108/09685220810908796

Hammar, R. K. R. (2022). Common law approaches to addressing cybercrime and adolescent bullying in Indonesia: Focusing on accountability and protection in the digital age. International Journal of Cyber Criminology, 16(2), 162–174. https://doi.org/10.5281/zenodo.4766573

Hanson, J. L., Balmer, D. F., & Giardino, A. P. (2011). Qualitative research methods for medical educators. Academic Pediatrics, 11(5), 375–386. https://doi.org/10.1016/j.acap.2011.05.001

Hasan, R. (2023). Understanding the perception and awareness of education technologies’ privacy and security issues. In Proceedings on Privacy Enhancing Technologies (Vol. 2023, Issue 4). Association for Computing Machinery. https://doi.org/10.56553/popets-2023-0110

Hina, S., & Dominic, D. D. (2016). Information security policies: Investigation of compliance in universities. 2016 3rd International Conference on Computer and Information Sciences, ICCOINS 2016 - Proceedings, August 2016, 564–569. https://doi.org/10.1109/ICCOINS.2016.7783277

Ibrahim, Y. A., Ishaya, A. O., Yusuf, M., Nancy, I., Bijik, H. A., & Aiyedogbon, S. F. (2024). Cybersecurity and cybercrimes in Nigeria: An overview of challenges and prospects. International Conference on Science, Engineering and Business for Driving Sustainable Development Goals, SEB4SDG 2024, April, 1–7. https://doi.org/10.1109/SEB4SDG60871.2024.10630301

Ishak, N. M., & Bakar, A. Y. A. (2014). Developing sampling frame for case study: Challenges and conditions. World Journal of Education, 4(3), 29–35. https://doi.org/10.5430/wje.v4n3p29

ISO/IEC. (2018). Information technology — Security techniques — Information security management systems — Overview and vocabulary. ISO/IEC 27001:2022/Amd 1:2024. https://www.iso.org/obp/ui/en/#iso:std:iso-iec:27000:ed-5:v1:en

Itanyi, N. (2022). The emerging digital economy in Nigeria : sacrificing the protection of privacy and data of consumers on the altar of economic growth. European Intellectual Property Review, 44(3), 172–180. https://pureadmin.qub.ac.uk/ws/portalfiles/portal/298456607/The_Emerging_Digital_Economy_in_Nigeria_Sacrificing_the_Protection_of_Privacy_and_Data_of_Consumers_on_the_Altar_of_Economic_Growth.pdf

Jacob, O. N., Solomon, A. T., & Jegede, D. (2020). University education policies in Nigeria: Challenges preventing the implementation and the ways forward. Jurnal Sinestesia, 10(2), 66–85. https://sinestesia.pustaka.my.id/journal/article/view/54

Kraus, S., Durst, S., Ferreira, J. J., Veiga, P., Kailer, N., & Weinmann, A. (2022). Digital transformation in business and management research: An overview of the current status quo. International Journal of Information Management, 63(December 2021). https://doi.org/10.1016/j.ijinfomgt.2021.102466

Liang, H., & Xue, Y. (2013). Ensuring employees ’ IT Compliance: Carrot or stick ? Information Systems Research, June 2013, 1–16. https://doi.org/10.1287/isre.1120.0427

Longo, F., Padovano, A., & Umbrello, S. (2020). Value-oriented and ethical technology engineering in industry 5.0: A human-centric perspective for the design of the factory of the future. Applied Sciences (Switzerland), 10(12), 1–25. https://doi.org/10.3390/APP10124182

Marczak, B., Scott-Railton, J., Rao, S. P., Anstis, S., & Deibert, R. (2020). Running in circles Uncovering the clients of cyberespionage firm circles. https://citizenlab.ca/2020/12/running-in-circles-uncovering-the-clients-of-cyberespionage-firm-circles/

Matthews, B., & Ross, L. (2010). Research methods: A practical guide for the social sciences. 1st ed. Pearson Longman. https://books.google.co.id/books/about/Research_Methods.html?id=7s4ERAAACAAJ&redir_esc=y

Mitchell, O., & Osazuwa, C. (2023). Confidentiality, integrity, and availability in network systems: A review of related literature. International Journal of Innovative Science and Research Technology, 8(12), 1947–1955. https://doi.org/10.5281/zenodo.10464076

Mutual Assistance in Criminal Matters (Amendment) Act 2019, Pub. L. No. No.8 of 2019, XXXIX Official Gazette 1 (2019). https://laws.gov.ag/wp-content/uploads/2019/08/No.-8-of-2019-Mutual-Assistnce-in-Criminl-Matters-Amendment-Act-2019-No.-8-of-2019-final.pdf

NITDA. (2019). https://nitda.gov.ng/wp-content/uploads/2020/11/NigeriaDataProtectionRegulation11.pdf

Nowicka, J., Ciekanowski, Z., & Milewska, A. (2024). Information security management as the basis for the functioning of an organization. European Research Studies Journal, XXVIΙ(Issue 3), 128–141. https://doi.org/10.35808/ersj/3427

Nte, N. D., Enoke, B. K., & Omolara, J. A. (2022). An evaluation of the challenges of mainstreaming cybersecurity laws and privacy protection in Nigeria. Journal of Law and Legal Reform, 3(2), 246–266. https://doi.org/10.15294/jllr.v3i2.56484

Okeshola, F. B., & Adeta, A. K. (2013). The nature, causes and consequences of cyber crime in tertiary institutions in Zaria-Kaduna State, Nigeria. American International Journal of Contemporary Research, 3(9), 98–114. https://www.aijcrnet.com/journals/Vol_3_No_9_September_2013/12.pdf

Okibo, B. W., & Ochiche, O. B. (2014). Challenges facing information systems security management in higher learning institutions: A case study of the catholic university of eastern Africa - Kenya. Nternational Journal of Management Excellence, 3, 336-349. https://doi.org/10.17722/IJME.V3I1.133

Onohihu, S. C. (2022). The essence of government and perpetual insecurity in northern Nigeria 2016-2021. International Journal of Social Sciences and Humanities Reviews, 12(1), 108–119. https://d1wqtxts1xzle7.cloudfront.net/91348889/798_2717_1_PB_2_-libre.pdf?1663776679=&response-content-disposition=inline%3B+filename%3DTHE_ESSENCE_OF_GOVERNMENT_AND_PERPETUAL.pdf&Expires=1735459937&Signature=gj73glVlozQpONPJ9SD0QQrMSElK0sy8elABh9oUVC3RqR

Ramalingam, R., Khan, S., & Mohammed, S. (2016). The need for effective information security awareness practices in Oman higher educational institutions. Journal of Advances in Information Technology, 3(3), 1–7. https://doi.org/10.4304/jait.3.3.176-183

Reddy, G. nikhit., & Reddy, G. j. ugande. (2023). A study of cyber security challenges and its emerging trends on latest technologies. International Journal of Innovative Research in Advanced Engineering, 10(06), 379–382. https://doi.org/10.26562/ijirae.2023.v1006.25

Roberts, T., Mohamed Ali, A., Farahat, M., Oloyede, R., & Mutung’u, G. (2021). Surveillance law in Africa: A review of six countries Nigeria country report. https://doi.org/10.19088/IDS.2021.059

Romansky, R. P., & Noninska, I. S. (2020). Challenges of the digital age for privacy and personal data protection. Mathematical Biosciences and Engineering, 17(5), 5288–5303. https://doi.org/10.3934/MBE.2020286

Sangestani, G., & Khatiban, M. (2013). Comparison of problem-based learning and lecture-based learning in midwifery. Nurse Education Today, 33(8), 791–795. https://doi.org/10.1016/j.nedt.2012.03.010

Saunders, M., Lewis, P., & Thornhill, A. (2019). Research methods for business students. In Synthese (Vol. 195, Issue 5). https://www.amazon.com/Research-Methods-for-Business-Students/dp/1292208783/ref=sr_1_2?dchild=1&qid=1614706531&refinements=p_27%3AAdrian+Thornhill+%2F+Philip+Lewis+%2F+Mark+N.+K.+Saunders&s=books&sr=1-2&text=Adrian+Thornhill+%2F+Philip+Lewis+%2F+Mark+N.+K

Serianu. (2016). Afica cyber security report 2016. In European commissioon (Issue November). https://www.serianu.com/downloads/AfricaCyberSecurityReport2016.pdf

Sigholm, J. (2013). Non-state actors in cyberspace operations. Journal of Military Studies, 4(1), 1–37. https://doi.org/10.1515/jms-2016-0184

Smith, A. R., Colombi, J. M., & Wirthlin, J. R. (2013). Rapid development: A content analysis comparison of literature and purposive sampling of rapid reaction projects. Procedia Computer Science, 16, 475–482. https://doi.org/10.1016/j.procs.2013.01.050

Sorokoumova, E. A., Puchkova, E. B., Cherdymova, E. I., & Temnova, L. V. (2021). The risks and threats of digital educational technologies and products. World Journal on Educational Technology: Current Issues, 13(4), 851–862. https://doi.org/10.18844/wjet.v13i4.6270

Ukhami, E. I., & Abdulsalam, D. (2024). Globalisation and national security: Perspectives on cybersecurity threats in Nigeria. JOURNAL OF POLITICAL DISCOURSE, 2(2), 273–286. https://jopd.com.ng/index.php/jopdz/article/download/130/121/249

Ukwuoma, H. C., Williams, I. S., & Choji, I. D. (2022). Digital economy and cybersecurity in Nigeria. International Journal of Innovation in the Digital Economy, 13(1), 1–11. https://doi.org/10.4018/ijide.292489

Vázquez-Cano, E., Parra-González, M. E., Segura-Robles, A., & López-Meneses, E. (2022). The negative effects of technology on education: A bibliometric and topic modeling mapping analysis (2008-2019). International Journal of Instruction, 15(2), 37–60. https://doi.org/10.29333/iji.2022.1523a

Vilmer, J.-B. J., Escorcia, A., Guillaume, M., & Herrera, J. (2015). Information manupulation a challenge for our democracies. https://doi.org/https://www.diplomatie.gouv.fr/IMG/pdf/information_manipulation_rvb_cle838736.pdf

Welc, D. (2019). Creating a Cybersecurity Strategy for Higher Education, 20 Mayo 2019 10 (2019). https://er.educause.edu/articles/2019/5/creating-a-cybersecurity-strategy-for-higher-education

Witbooi, E., Ali, K.-D., Santosa, M. A., Hurley, G., Husein, Y., Maharaj, S., Okafor-Yarwood, I., Quiroz, I. A., & Salas, O. (2020). Organized crime in the fisheries sector threatens a sustainable ocean economy. Nature, 588(7836), 48–56. https://doi.org/10.1038/s41586-020-2913-5

Challenges of information security laws and legislations in Nigeria’s institutions of higher education: Views from Yola, Adamawa state

Authors

DOI:

Keywords:

Abstract

Downloads

References

Downloads

Published

How to Cite

Issue

Section

License

quickmenu

template

menu