Information Security Risk Assessment Of E-Learning Systems: A Case Study On Global Open Access Learning System In Universiti Sains Islam Malaysia

This study investigates the problem of information security risk associated with ELearning Systems of Global Open Access Learning System (G. O. A. L. S. ) in Universiti Sains Islam Malaysia (USIM). To narrow down the scope of the study, staffs from GOALS system are targeted for the population of this study. The information security risks of GOALS will be predicted and classified on a well structured basedquestionnaire that was based on items derived from the study integrating information security in an eLearning environment that involves three items on general information security risks categories which are; (1) Unauthorized release of information, (2) Unauthorized modification of information, and (3) Unauthorized denial of resource use. Meanwhile, data obtained from respondents went through risk assessment that consists of four steps that are; (1) Determine information security threats, (2) Risk evaluation, (3) Propose remedies for information security threats, and (4) Review the assessment. Results showed that Technological threats is the type of information security threats faced by GOALS in USIM. It involves interruption to access the system by lecturers
and students due to poor bandwidth, server problem and other reason. Then, it also involves interception to the system that disable or disconnect lecturers or students when they upload or download files in the system, and also when student conduct quiz or test. Access control using firewall is proposed as remedies for information security threats faced by GOALS in USIM. A firewall is a blend of equipment and
programming security system secured to avert unapproved access to a corporate system from outside the organization.