SolarWinds hack compromised the U.S. agencies as well as higher education institutions. This paper reviews the literature about the SolarWinds attack and ISO/IEC 27001 standards, NIST cybersecurity framework, Microsoft cybersecurity reference architecture, a cybersecurity roadmap combined the NIST cybersecurity framework, Microsoft cybersecurity, and the information security management system use cases in higher education institutions. Then, the paper proposed an innovative security centered information security management system model for higher education institutions.

Authors: Weibing Zheng, Feifei Pang, Said Varlioglu

Our Sponsors