Are there threats to information system security? a focus on university libraries in South-West, Nigeria

Security of data is a key component of information systems while threats to information systems are major challenges especially as the society is largely dependent on Information and Communication Technologies for running its daily activities. This study investigated threats to information systems security in three purposively selected university libraries in South-West, Nigeria. Total enumeration technique was used to capture 48 librarians using a combination of a structured questionnaire which elicited information on threats to the library’s information systems and features put in place to protect them; and an interview schedule which was the basis for interviewing librarians specifically in charge of information systems. Total of 42 questionnaires were correctly filled and returned at 88% response rate. The study revealed that librarians had witnessed threats on their information systems. Malware was the major threat to the database/OPAC system (62%), mean ( ) = 2.64; similarly Malware (Virus and Worms) (60%), mean ( ) = 2.62 is the major threat to the operating systems across the selected universities libraries. Furthermore, the study revealed that all the university libraries had high password protection; software updates, firewall, audit and accountability trail on their systems but access control of the information systems was relatively poor. The paper concludes that the university libraries are not immune to attacks as there are threats to the information systems. The study recommends periodic deployment of new protective means, use of telecommunication systems and employment of in-house experts to secure systems and guide against the dire consequences of data loss and destruction.