Minimization of Risks of Information Security when Providing Internet Access

For educational establishments, the information security is becoming an increasingly important aspect of integrated security protection, because today all the companies in the field of service are forced to share information in addition to various commodities. The main place for this exchange is the Internet, but the openness of the Internet holds many risks that is necessary to neutralize by the timely protection. This graduation thesis entitled “Minimization of risks of information security when providing Internet access” considers the information security ensuring of the corporate network of the National Research University HSE. The main issue, which formed the basis of this work: whether the level of information security at the university corresponds to the accepted standards and legislation. The main objective is the direct assessment of the level of information security and further recommendations for improvement of the situation. The assigned tasks are: studying of potential information security threats occurring today, finding existing vulnerabilities in information services of the HSE, as well assessment and analysis of the existing infrastructure and suggestion of the proposals for services improvements. To assess the level of threats and the degree of compliance between the protection and information security risks the Microsoft Security Assessment Tool instrument is used. It built on the same-name methodology. This study discloses the features of information security risks assessment in the all aspects. In higher educational establishment, especially in the HSE, a lot of information is handled, that actually is also a knowledge asset. Its disclosure could lead to crucial financial losses. The study demonstrates the importance of full-scale activity on reducing the information security risk in the corporate networks of universities.