Survey results on adults and cybersecurity education

Ricci, Joseph A.; Breitinger, Frank; Baggili, Ibrahim

doi:10.1007/s10639-018-9765-8

Cited by 31 publications

(21 citation statements)

References 4 publications

(3 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Those assets include networked devices, services, infrastructure, personnel, telecommunications systems, applications, and all of transmitted and/or stored information within the cyber environment, in order to secure the organization and users’ assets based on three main objectives consisting of availability, integrity, and confidentiality (ITU-T, 2008 ). Therefore, it can be stated that cybersecurity is a crucial factor in this era and has become a critical in this age of digital transformation (Ahmed et al, 2019 ; Ricci et al, 2019 ). It is the protection of security and privacy against cyber-attacks due to security risks and vulnerabilities.…”

Section: Introductionmentioning

confidence: 99%

“…This means that changing an approach can deceive users although they have basic cybersecurity skills. Ricci et al ( 2019 ) conducted a survey with 233 subjects and found that many of them were worried about cyber threats/attacks and also about their children exploring the online domain. The majority of them were interested in learning more about cybersecurity if their employers would support the costs offor cybersecurity training.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Cybersecurity Awareness Enhancement: A Study of the Effects of Age and Gender of Thai Employees Associated with Phishing Attacks

2021

View full text Add to dashboard Cite

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Cybersecurity Awareness Enhancement: A Study of the Effects of Age and Gender of Thai Employees Associated with Phishing Attacks

2021

View full text Add to dashboard Cite

“…Ricci et al stated that people are generally the weakest link in the security chain in terms of cyber-attacks and identity theft Ricci et al. ( 2019 ). Cabaj et al stated that the current cyber security workforce is not sufficient to meet the growing demand for qualified cyber security professionals and the shortage will increase (Cabaj et al., 2018 ).…”

Section: Background and Related Workmentioning

confidence: 99%

Analysis of cyber security knowledge gaps based on cyber security body of knowledge

et al. 2022

View full text Add to dashboard Cite

Due to the increasing number of cyber incidents and overwhelming skills shortage, it is required to evaluate the knowledge gap between cyber security education and industrial needs. As such, the objective of this study is to identify the knowledge gaps in cyber security graduates who join the cyber security workforce. We designed and performed an opinion survey by using the Cyber Security Knowledge Areas (KAs) specified in the Cyber Security Body of Knowledge (CyBOK) that comprises 19 KAs. Our data was gathered from practitioners who work in cyber security organizations. The knowledge gap was measured and evaluated by acknowledging the assumption for employing sequent data as nominal data and improved it by deploying chi-squared test. Analyses demonstrate that there is a gap that can be utilized to enhance the quality of education. According to acquired final results, three key KAs with the highest knowledge gap are Web and Mobile Security, Security Operations and Incident Management. Also, Cyber-Physical Systems (CPS), Software Lifecycles, and Vulnerabilities are the knowledge areas with largest difference in perception of importance between less and more experienced personnel. We discuss several suggestions to improve the cyber security curriculum in order to minimize the knowledge gaps. There is an expanding demand for executive cyber security personnel in industry. High-quality university education is required to improve the qualification of upcoming workforce. The capability and capacity of the national cyber security workforce is crucial for nations and security organizations. A wide range of skills, namely technical skills, implementation skills, management skills, and soft skills are required in new cyber security graduates. The use of each CyBOK KA in the industry was measured in response to the extent of learning in university environments. This is the first study conducted in this field, it is considered that this research can inspire the way for further researches.

show abstract

“…In conclusion, the authors stressed the importance of enhancing the current cybersecurity awareness programs, with particular focus to those dedicated to the younger generations. Ricci et al [25] surveyed the interest in cyber threat education among adults. Most respondents of the survey were concerned about cybersecurity threats, and their impacts on everyday life.…”

Section: Literature Reviewmentioning

confidence: 99%

Cybersecurity Training in Norwegian Critical Infrastructure Companies

Chowdhury¹,

Nystad²,

Reegård³

et al. 2022

IJSSE

View full text Add to dashboard Cite

Human preparedness is a critical aspect of critical infrastructure (CI) cybersecurity. Many efforts, including educational curricula and training programs, have been taken at both national and company level to ensure human preparedness in CI incident response. These efforts are usually based on corporate requirements or external guidelines and policies. However, the best practices recommended for these efforts in the literature differ significantly from the measures implemented in CI companies. For this reason, we compared state of practice in cybersecurity awareness and training in selected CI companies with the recommendations in literature, aiming to identify the areas that CI companies need to increase efforts for further security implementations. Specifically, we conducted interviews (n=7) and sent out questionnaires to cybersecurity personnel (n=11) in different CI sectors of Norway. The collected data were analyzed to establish the commonalities, differences, and areas of concern among the interviewees, with respect to certain critical attributes. All Norwegian companies involved in the study offered some type of awareness or training activities to their employees, but these activities varied greatly in the level of maturity. Besides, we noted several limitations in methods and contents. According to many participants, the team skills, communication skills, and managerial skills were often inadequately developed. Additional limitations in delivery methods were noticed, too. Finally, we suggested the solutions from the best practices in the literature, and pointed out the areas where the literature has not provided effective measures.

show abstract

Survey results on adults and cybersecurity education

Cited by 31 publications

References 4 publications

Cybersecurity Awareness Enhancement: A Study of the Effects of Age and Gender of Thai Employees Associated with Phishing Attacks

Cybersecurity Awareness Enhancement: A Study of the Effects of Age and Gender of Thai Employees Associated with Phishing Attacks

Analysis of cyber security knowledge gaps based on cyber security body of knowledge

Cybersecurity Training in Norwegian Critical Infrastructure Companies

Contact Info

Product

Resources

About