It appears you don't have support to open PDFs in this web browser. To view this file, Open with your PDF reader
Abstract
This thesis investigates the integration of Zero Trust Architecture (ZTA) and the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF) within nonprofit and small organizations to enhance cybersecurity posture. Amidst increasing cyber threats, especially highlighted during the COVID-19 pandemic where nonprofit tech adoption allowed organizations to keep serving their communities during country-wide lockdowns, and cybercrime surged by 600%, the necessity for robust cybersecurity in nonprofits has never been more critical. This study aims to evaluate current cybersecurity practices, specifically Multi-Factor Authentication (MFA) adoption across varying nonprofit sizes, and assess the applicability of ZTA and NIST CSF.
The methodology involved in this Thesis includes quantitative analysis of data from the NTEN 2018 State of Nonprofit Cybersecurity report, which provided insights into IT staffing and cybersecurity practices among 250 nonprofits. The thesis’s research objectives included establishing the relationship between IT resources and cybersecurity readiness, particularly focusing on MFA implementation—a basic yet crucial security measure. The results reveal a direct correlation between IT staffing levels and MFA adoption, with larger organizations more likely to implement MFA compared to smaller ones. Notably, nonprofits with dedicated IT personnel were significantly better at adopting cybersecurity measures than those without. This underscores the importance of structured IT support in enhancing cybersecurity readiness in nonprofits. Evaluation of these results indicates that integrating ZTA and NIST CSF can significantly bolster cybersecurity in nonprofits, especially if aligned with increased IT support. The implications in this thesis suggest that even minimal investments in IT resources can substantially mitigate cyber risks. This research contributes to the broader discourse on nonprofit cybersecurity, providing a scalable model for security enhancements and advocating for continued IT investment in the sector.
You have requested "on-the-fly" machine translation of selected content from our databases. This functionality is provided solely for your convenience and is in no way intended to replace human translation. Show full disclaimer
Neither ProQuest nor its licensors make any representations or warranties with respect to the translations. The translations are automatically generated "AS IS" and "AS AVAILABLE" and are not retained in our systems. PROQUEST AND ITS LICENSORS SPECIFICALLY DISCLAIM ANY AND ALL EXPRESS OR IMPLIED WARRANTIES, INCLUDING WITHOUT LIMITATION, ANY WARRANTIES FOR AVAILABILITY, ACCURACY, TIMELINESS, COMPLETENESS, NON-INFRINGMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Your use of the translations is subject to all use restrictions contained in your Electronic Products License Agreement and by using the translation functionality you agree to forgo any and all claims against ProQuest or its licensors for your use of the translation functionality and any output derived there from. Hide full disclaimer
Details
