- December 4, 2020
- Posted by: tony.nehme
- Category: Forbes Middle East
Despite an ongoing drive by governments and law enforcers around the world to improve the sophistication of their risk mitigation measures, cyberattacks are continually increasing, with cybercriminals successfully penetrating even the most high-profile companies and governmental agencies.
Worryingly, most cybersecurity breaches are due to human error as the result of lack of awareness, knowledge or enforcement. With the increase of virtual threats, the need is falling to potential targets to strengthen their guard when it comes to firming up network security infrastructure. Unfortunately, this is something that is often overlooked.
Academia plays a key role in preparing governments, professionals, IT experts and law enforcers to better lead and execute anti-cybercrime initiatives and enforcement measures. Ever-evolving cyber-threats are making it crucial for academic institutions to educate students on the concepts and technologies of cybersecurity. It is critical that IT programs champion these topics.
Many institutions lack proper structure and technical training. Often training is too generic or not sufficient in educating employees on how to detect a cyber breach or where to report it. Collaboration between the government and companies is essential in planning who the company can contact for help or what action it may legally or practically take to defend itself.
Law enforcement cybercrime investigations require a combination of traditional and new policing techniques. While some investigative actions can be achieved with traditional powers, many do not translate well from a spatial and object-oriented approach to one involving electronic data storage and real-time data flows.
Education and awareness are key factors to preventing cybercrimes. Education, when enforced at the national and law enforcement levels, can prepare the general public to identify and avoid risks in cyberspace and will help prepare the cyber security workforce of tomorrow.
Here are three stages to implementing a cyber educational framework:
Clear educational strategy and goals
The education framework should reflect the overall vision of the government concerning its cyber security awareness and education goals and suggest schemes that could be used to realize them. A national cyber security awareness and education campaign should be defined, and partnerships should be established. An establishment of partnerships with the public and private sector, academia, other nations is crucial. These partnerships would allow industry, academia and other nations to contribute to a country ‘s cyber security awareness and education. Such partnerships, particularly with other nations, would promote the alignment of cyber security awareness and education as well among nations globally.
The next step is to prepare the contents of the scheme and define it according to its respective target audiences. This step consists of four components, namely: topics, content, medium, and tools. While developing the framework, the government needs to decide on the topics they want to educate people on. Different topics might be more relevant to specific audiences, in example cybersecurity and cyber bullying for children and phishing and identity theft for adult. Next the government needs to decide in what medium they want to create awareness and educate people and what tools they should use to promote this.
The monitoring phases
This phase examines the progress made by the scheme towards fulfilling the government’s vision. The progress made in the cyber security awareness and education efforts should continuously be monitored and evaluated. In addition, the effectiveness of the overall campaign should also be evaluated.
An effective fight against cybercrime requires highly developed cyber awareness, organizational structures and internal cyber compliance measures. Cyber security awareness and education is the responsibility of everyone who enjoys the benefits offered by cyberspace.