Securing Higher Education Through DevSecOps Framework
摘要
In an increasingly digital landscape, higher education institutions rely on robust information systems security as a foundation for operational success and long-term resilience. As these institutions adopt advanced technologies to enhance pedagogical, research, and administrative functions, safeguarding such systems becomes imperative. The rising demand for rapid deployment of secure and dependable software solutions has led to greater interest in DevSecOps within both industry and academia. In this context, the present study introduces a DevSecOps-oriented framework specifically designed to address cybersecurity challenges in higher education environments. The framework integrates automated security testing, continuous compliance validation, and centralized vulnerability management to strengthen institutional system resilience. The contributions of this work are threefold: (1) the formulation of a structured methodology for embedding security within DevOps pipelines; (2) the development of a centralized vulnerability tracking and remediation mechanism; and (3) the evaluation of the framework’s effectiveness in mitigating threats. Results show that the proposed approach improves the security posture of academic infrastructures by reducing exposure and enhancing incident response. Ultimately, this research highlights the strategic importance of adopting DevSecOps practices to build a more adaptive and resilient cybersecurity posture in higher education.