Mitigating Dual-Use Cybersecurity Risks in Latin American Higher Education: Implementing the NIST CSF 2.0 for Institutional Resilience
摘要
This study documents the implementation of the NIST Cybersecurity Framework 2.0 in a technological higher educationHigher education institution in Latin America to reduce cybersecurity gaps that may be exploited as dual-use technologiesDual-use technologies in open academic environments. Using pre-experimental, longitudinal, and quantitative design, institutional maturity was assessed across the five core functions of the framework (Identify, Protect, Detect, Respond, and Recover), revealing an average functional gap of 30.59%. The most critical deficiencies were found in asset management, staff training, and incident response capabilities. In response, an institutional action plan was designed and implemented, consisting of 20 strategic interventions, including network segmentation, recovery protocols, continuous monitoring, and awareness campaigns. The study offers a replicable roadmap for adapting international cybersecurity frameworks to the realities of universities in the Global South. It highlights the importance of aligning digital governanceDigital governance, organizational culture, and strategic planning to mitigate the risks associated with dual-use technologies in higher education.