How Can We Realise Cyber Resilience Through Education?

In today's global and interconnected economy, the importance of cyber resilience cannot be underestimated. It is no longer about securing networks and devices but about providing trust in the increasingly complex technologies and processes that societies rely on. Education in the profession matters.
 
The launch of the UK Cyber Security Council’s certification mapping tool is set to provide cyber professionals with useful resources to better understand the requirements for their desired career path. This further highlights the benefits of educational programs, as it provides a roadmap for their security careers and ensures that they are equipped with the knowledge needed to succeed and aligned to a specific role they would like to secure in the future.
 
Creating Rounded Professionals 

We all understand the benefits of educating cyber professionals so that they are able to create robust systems and identify and prevent cyber threats. What continues to be a challenge is educating those in cybersecurity so that they understand risk and can translate that risk into a strategy that gets buy-in across the business or organisation.
 
Cybersecurity has risen well up the ranks of risks that senior business leaders think about, becoming a major concern for CEOs and boards. Concern, however, needs to be translated into proper action, and this requires having people with not only technical competencies but business leadership skills that can enable and drive change across a whole enterprise.

One of the practical ways in which cybersecurity education can improve to deliver this is through a greater focus on understanding risk-based approaches to cybersecurity and learning how to work cross-functionally with business unit leaders and senior executives to enact and drive a strategy forward.
 
At the moment, this is lacking. As we continue to develop cybersecurity education programmes and frameworks, we need to ensure that there are modules and certifications that bring together the technical and the strategic. Cybersecurity practitioners need to understand how they translate the strategies and processes they are responsible for into something that the wider organisation wants to implement. Without these skills, cybersecurity approaches will never reach the point of creating cyber-resilient organisations.
 
Bringing Industry & Academia Together 

Given the interconnectedness of the global economy, no single entity can solve cybersecurity challenges alone. One of the criticisms that has been levelled at cybersecurity education frameworks is that there is not enough industry involvement in the delivery and sharing of knowledge, and this is something that needs to be corrected.
 
One of the reasons why bringing people with academic and real-world insight together is so important is because implementing a cyber resilience strategy is both a complex and also very human process. There are multiple pitfalls over which efforts can stumble or get completely waylaid. There need to be opportunities to learn best practices and then understand how they react to reality and how cyber professionals can ensure their cyber resilience strategies stay on track.
 
This is going to include understanding how to work with board members and the CEO, how to engage leaders of locations in other countries, and how to influence from the shop or office floor all the way to the top. These can all be challenging conversations, and understanding first-hand how someone successfully went about them and achieved what they set out to do can help to demystify what, on the face of it, is a daunting task.  

Building A Digitally Secure Future 

Education is key to developing the cybersecurity leaders of tomorrow and ensuring that businesses are equipped to navigate the complex and ever-evolving landscape of cybersecurity threats.

By investing in a holistic education journey, it will be possible to develop a more secure digital future. However, this is only going to be achieved if the cyber community understands how to move past a profession focused on securing technology to one of delivering global resilience.

Will Dixon isDirector of Academy and Community at ISTARI 

You Might Also Read: 

Why We Should Worry About A War On Cybercrime:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

 

« Iranian Government Uses Android Malware For Mobile Surveillance
France Fines Clearview AI For Failing To Pay The Previous Fine »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Titanium Industrial Security

Titanium Industrial Security

Titanium Industrial Security specializes in advising and accompanying companies on cybersecurity in Connected Industry (Industry 4.0 / Smart Factory / IIoT).

Ledger

Ledger

Ledger is a leader in security and infrastructure solutions for cryptocurrencies and blockchain applications using its proprietary technology.

Dathena

Dathena

Dathena is a company developing data governance software based on machine learning algorithms.

Tehtris

Tehtris

TEHTRIS XDR Platform was developed to control and improve the IT security of private and public companies against advanced cyber threats such as cyber espionage or cyber sabotage activities.

Cyber Risk Aware

Cyber Risk Aware

Cyber Risk Aware provide a security awareness and phishing simulation platform that focuses on real threats and educates and empowers employees to be the first line of defence.

Singular Security

Singular Security

Singular Security help public and private organizations minimize cybersecurity risk and pass their IT compliance audit.

apiiro

apiiro

apiiro invented the industry-first Code Risk Platform™ that uses developers and code behavior analysis to accelerate delivery and automatically remediate product risk.

Onevinn

Onevinn

Onevinn's goal is to create a transparent, cost-effective security that is noticed as little as possible by the users. We simply call it "intelligent security."

Shorebreak Security

Shorebreak Security

Shorebreak Securioty specialize in conducting highly accurate, safe, and reliable Information Security tests to determine the risks posed to your business.

Team Secure

Team Secure

Team Secure provide Enterprise-grade Cyber Security consultancy, managed security services and cyber security staffing services.

Xalient

Xalient

Xalient is an IT consulting and managed services business, specialising in modern, software-defined networking, security and communications technologies.

Quantum Ventura

Quantum Ventura

Quantum Ventura is a technology innovation company with a single mission of delivering customer-centric advanced solutions to US Federal & State Governments and Private Sector customers.

Telenor Cyberdefence

Telenor Cyberdefence

Telenor Cyberdefence is a newly established (2024) cloud-born Managed Security Service Provider focused on the Nordic markets.

SecondSight

SecondSight

SecondSight’s Vertical AI embodies a full-spectrum approach to cyber insurance, facilitating accurate digital risk profiling.

Velaspan

Velaspan

Velaspan design, deploy, and manage enterprise wireless networks and cybersecurity solutions for leading businesses and brands.

Blockaid

Blockaid

Blockaid is the onchain security platform for monitoring, detecting, and responding to onchain and offchain threats.