Factor analysis on information security management in higher education institutions

Information security has become an important thing for any organization because of information technology adoption, including for higher education institutions. Increasing the number of information security incidents in academic environment make those institutions have to implement a good information security management. However, most of them cannot do it easily because of various factors. This study has a purpose to determine factors that influence information security management in higher education institutions. Variables that related to those factors were divided into five, i.e., awareness, budget, security policy, management support and organization mission. This research used quantitative method with factor analysis technique. The population in this study were universities in Bandung, Indonesia. The sampling technique used was purposive sampling. Based on the results of the factor analysis, two factors were constructed. The first factor consists of four variables; i.e., awareness, budget, information security policy, and top management support. The second factor consists of a variable, mission organization. All the variables in the first factor (awareness, budget, information security policy, and top management support) are more significant in affecting implementation of information security management in higher education.