Logo

Data sharing in the cloud puts education sector at risk of data breaches

Netwrix survey reveals that employees at 54% of educational organisations use cloud applications to share sensitive data outside of IT control and knowledge.

  • 4 years ago Posted in

Netwrix has published additional findings from its 2020 Data Risk & Security Report. The report reveals that many educational organisations are at risk of data security incidents during the current period of working from home and virtual learning.

According to the survey, even before the lockdown, the majority of educational organisations had weak data security controls. In particular, 54% of IT professionals in the educational sector confessed that employees put data at risk by sharing it via cloud apps outside of IT knowledge. This is the highest percentage among all verticals surveyed. The move to distance learning increases this risk even more.

Other notable findings of the report include:

  • 82% of educational organisations don’t track data sharing at all or do it manually, and 50% of them suffered a data breach due to unauthorised data sharing last year
  • 63% of educational organisations don’t review permissions regularly, and 24% of system administrators admitted to granting direct access rights upon user request
  • 28% of respondents discovered data outside of secure locations, which is the highest number of all industries surveyed. This data was left exposed for days (40%) or months (33%)
  • Only 8% of respondents have developed cybersecurity and risk KPIs to evaluate their security posture and track success

“Distance learning creates many challenges for educational organisations, and cybersecurity is often taking a back seat to operational resilience. The Netwrix survey shows that security processes were not ideal before the pandemic, leaving these institutions even more vulnerable to the growing number of cyber threats today. To ensure these institutions can secure their student and employee data, IT professionals need to get back to basics. First, they need to understand what sensitive data they have, and classify it by its level of sensitivity and value to the organisation. Second, they need to ensure that the data is stored securely, prioritising the most important data. And last, they need to adopt healthy security practices for granting permissions in order to avoid data overexposure,” said Steve Dickson, CEO at Netwrix.

Vultr collaborates with AMD, Broadcom and Juniper Networks to pioneer new GPU data centre architecture

New state-of-the-art data centre features Vultr’s first AMD GPU supercompute cluster.

Less than a fifth of IT professionals say cloud infrastructure meets their needs

Only a quarter (25%) think their approach to the cloud is carefully considered and successful.

Kyndryl to lead The Co-operative Bank’s migration

Moving to AWS Cloud will enable The Co-operative Bank to adopt cutting edge IT Infrastructure.

Google Cloud lands partnership with Air France-KLM

The global airline group will upgrade the value of its data and get its AI & generative AI ready...

Infinigate Cloud offers easy access to Barracuda security solutions

Barracuda Networks’s award-winning Email Protection and Cloud Backup security solutions will be...

RWE to harness AI-driven weather modelling with HPE Private Cloud AI

Leading company in renewables to leverage HPE’s unique turnkey AI infrastructure solution to...

Marelli extends relationship with Wipro

The four-year project extension focuses on cloud transformation and enhanced operational efficiency...

Reluctance to fully embrace the cloud hampers UK business development

Businesses in the UK are risking slower development as they fail to fully embrace technologies that...

© 2024 - Angel Business Communications Limited

Made with by Angels