How Can We Realise Cyber Resilience Through Education?

Uploaded on 2023-05-18 in TECHNOLOGY--Resilience, JOBS-Training, FREE TO VIEW

In today's global and interconnected economy, the importance of cyber resilience cannot be underestimated. It is no longer about securing networks and devices but about providing trust in the increasingly complex technologies and processes that societies rely on. Education in the profession matters.
 
The launch of the UK Cyber Security Council’s certification mapping tool is set to provide cyber professionals with useful resources to better understand the requirements for their desired career path. This further highlights the benefits of educational programs, as it provides a roadmap for their security careers and ensures that they are equipped with the knowledge needed to succeed and aligned to a specific role they would like to secure in the future.
 
Creating Rounded Professionals 

We all understand the benefits of educating cyber professionals so that they are able to create robust systems and identify and prevent cyber threats. What continues to be a challenge is educating those in cybersecurity so that they understand risk and can translate that risk into a strategy that gets buy-in across the business or organisation.
 
Cybersecurity has risen well up the ranks of risks that senior business leaders think about, becoming a major concern for CEOs and boards. Concern, however, needs to be translated into proper action, and this requires having people with not only technical competencies but business leadership skills that can enable and drive change across a whole enterprise.

One of the practical ways in which cybersecurity education can improve to deliver this is through a greater focus on understanding risk-based approaches to cybersecurity and learning how to work cross-functionally with business unit leaders and senior executives to enact and drive a strategy forward.
 
At the moment, this is lacking. As we continue to develop cybersecurity education programmes and frameworks, we need to ensure that there are modules and certifications that bring together the technical and the strategic. Cybersecurity practitioners need to understand how they translate the strategies and processes they are responsible for into something that the wider organisation wants to implement. Without these skills, cybersecurity approaches will never reach the point of creating cyber-resilient organisations.
 
Bringing Industry & Academia Together 

Given the interconnectedness of the global economy, no single entity can solve cybersecurity challenges alone. One of the criticisms that has been levelled at cybersecurity education frameworks is that there is not enough industry involvement in the delivery and sharing of knowledge, and this is something that needs to be corrected.
 
One of the reasons why bringing people with academic and real-world insight together is so important is because implementing a cyber resilience strategy is both a complex and also very human process. There are multiple pitfalls over which efforts can stumble or get completely waylaid. There need to be opportunities to learn best practices and then understand how they react to reality and how cyber professionals can ensure their cyber resilience strategies stay on track.
 
This is going to include understanding how to work with board members and the CEO, how to engage leaders of locations in other countries, and how to influence from the shop or office floor all the way to the top. These can all be challenging conversations, and understanding first-hand how someone successfully went about them and achieved what they set out to do can help to demystify what, on the face of it, is a daunting task.  

Building A Digitally Secure Future 

Education is key to developing the cybersecurity leaders of tomorrow and ensuring that businesses are equipped to navigate the complex and ever-evolving landscape of cybersecurity threats.

By investing in a holistic education journey, it will be possible to develop a more secure digital future. However, this is only going to be achieved if the cyber community understands how to move past a profession focused on securing technology to one of delivering global resilience.

Will Dixon isDirector of Academy and Community at ISTARI 

You Might Also Read: 

Why We Should Worry About A War On Cybercrime:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

 

« Iranian Government Uses Android Malware For Mobile Surveillance
France Fines Clearview AI For Failing To Pay The Previous Fine »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Tines

Tines

The Tines security automation platform helps security teams automate manual tasks, making them more effective and efficient.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Fuel Recruitment

Fuel Recruitment

Fuel Recruitment is a specialist recruitment company for the IT, Telecoms, Engineering, Consulting and Marketing industries.

International Organization for Standardization (ISO)

International Organization for Standardization (ISO)

ISO is an independent, non-governmental international standards organization. The ISO/IEC 27001 is the standard for information security management systems.

Conix

Conix

Conix offerings include Governance and Risk Management, Auditing and Penetration Testing, Digital Forensics, Managed Security Operations Centre (SOC).

Aviva

Aviva

Aviva provides Cyber Liability cover for small to mid-market customers to help combat the threat of data and privacy breach.

Shield-IOT

Shield-IOT

Shield-IoT provides real-time analytics and cyber security solutions for deployment in mass scale B2B and IIoT networks.

Barbara IoT

Barbara IoT

Barbara is an industrial device platform specifically designed for IoT deployments.

CertiPath

CertiPath

CertiPath create products and services that ensure the highest levels of validation for digital identities that attempt to access customers’ networks.

GBT Technologies

GBT Technologies

GBT Technologies is a technology company focused on chip design and software to enable IoT, global mesh networks, and for applications relating to artificial intelligence.

Association of anti Virus Asia Researchers (AVAR)

Association of anti Virus Asia Researchers (AVAR)

AVAR's mission is to prevent the spread of and damage caused by malicious software, and to develop cooperative relationships among anti-malware experts in Asia.

Netgo

Netgo

Netgo group meet the requirements of a complex, digitized world with IT consulting, IT solutions & services, managed & cloud services and software products & development.

CyberconIQ

CyberconIQ

CyberconIQ provide an integrated Human Defense Platform that reduces the probability and/or the cost of a cybersecurity breach by measurably improving our clients risk posture and compliance culture.

MS Tech Solutions

MS Tech Solutions

MS Tech Solutions is a Jamaican-based, multinational consulting company that specializes in the architecture, implementation and management of key network and Information technologies.

iNovex

iNovex

iNovex is a community of innovators that work together to solve hard problems. We partner with you to meet problems head-on and push boundaries with technology solutions.

Sequentur

Sequentur

Sequentur is an award-winning Managed IT Services company. We are SOC 2 certified and provide Managed IT Services and Cybersecurity services to businesses nationwide.

Apex iQ (ApexiQ)

Apex iQ (ApexiQ)

ApexiQ is a continuous asset assurance platform that empowers you with the confidence to make better data-driven decisions and take automated action to reduce your risk.

Invariant Labs

Invariant Labs

Invariant Labs are a team of technical experts with broad experience ranging from academia to big tech on a mission to unlock the potential of AI systems by making them robust, reliable and secure.