สำนักงานราชบัณฑิตยสภา

91 ครรชิ ต มาลั ยวงศ์ วารสารราชบัณฑิตยสถาน ปีที่ ๓๘ ฉบับที่ ๔ ต.ค.-ธ.ค. ๒๕๕๖ Abstract A Guideline for Setting up ICT Security Policy in Universities Khanchit Malaiwong Fellow of The Academy of Science, The Royal Institute, Thailand At present, all universities store student registration and grade records in the databases within their computer centers. This practice introduces high risk of losing student records due to the lack of ICT security management. Many universities in Thailand have been aware of the importance ICT security management and start to explore various ways to implement ICT security policy. This paper provides a guideline to develop such ICT security policy based on a framework of ISO 27001. Keywords : ICT security policy, university, ISO 27001