Title Multi-dimensional cybersecurity education design: a case study /
Authors Pirta-Dreimane, Rūta ; Brilingaitė, Agnė ; Roponena, Evita ; Parish, Karen
DOI 10.1109/DASC/PiCom/CBDCom/Cy55231.2022.9927931
ISBN 9781665462976
Full Text Download
Is Part of The 7th IEEE Cyber Science and Technology Congress (CyberSciTech 2022). September 12-15, 2022, Calabria, Italy.. Piscataway, NJ : IEEE, 2022. p. [1-8].. ISBN 9781665462976
Keywords [eng] cybersecurity education ; behavior change ; IT risk assessment ; critical thinking ; intervention mapping
Abstract [eng] Global economies depend on business continuity within the digital space, and cybersecurity is becoming a strategic capability among nations and continents. Accordingly, the need for the cyber workforce is increasing within all public and private sectors. International communities report that skilled specialists are lacking, and the building of cyber-resilience should consider individuals as humans are at the center of most attacks. Existing and emerging cybersecurity competence frameworks focus on the development of subject-specific skills. However, cybersecurity is an interdisciplinary subject requiring understanding human behavior and behaving in the digital space in security-conscious manner in daily routines. Therefore, several dimensions should be integrated into educational programs to support the development of critical competencies, including subject-specific skills and knowledge areas, general skills, and behavioral changes. The paper presents the intervention-mapping-based methodology supporting a multi-dimensional cybersecurity educational design. The methodology applies to different education paths (academic and professional). The pilot study supports the application of the methodology and provides a preliminary evaluation of the chosen approach. The pilot case incorporated continuing education (professional) and master-level (academic) student groups. The study considered critical thinking competence development linked to risk assessment based on cyber threats identifiable within the provided scenario. The results demonstrated the potential value of integrating non-technical topics into the development of role-specific competences.
Published Piscataway, NJ : IEEE, 2022
Type Conference paper
Language English
Publication date 2022