Daily Post 1236
CYBER SECURITY MANDATORY TRAINING
We have been facing the music for lack of awareness, knowledge, skills and resistance to change in Cyber Security in wide and varied arenas, areas and sectors. The end result is the ever increasing threat not necessarily because of the outside threat environment but because of the inability to even reach the barest minimum. Anti-virus management, patch management, secure passwords, installation of lasted version of software, OSs are still supposed to be surreal for a user base immersed in digital technology.
The workspace has become a digital workspace completely intertwined at the backend to the world, directly, indirectly or in whichever manner. The crux of the matter is, can these people be allowed to operate systems at the peril of the organisations, businesses and other users. It is like allowing a driver accustomed to driving in an open field to complex Indian city traffic. It’s becomes an undoable exercise, expecting anything else to happen can only be a pipe dream.
In a mined Southern Sudan in the UN Peacekeeping Mission all staff were mandated to go through a compulsory security course, the entry into the mission was dependent on successfull completion the course. Today, we have reached the same stage with regards to Cyber Security. You not only put yourself to risk you put others too and possibly the country.
Every organisation / enterprise should decide what is their requirement at different levels and with the help of experts plan a curriculum and get it executed by the best possible experts in the field. This needs to have a minimum of 50% hands on classes. Technology can be best taught by practice. The assimilation needs to be tested, follow through done and scaling / refreshing of skills and knowledge at regular intervals can be the only way out. Cyber Security remains as dynamic as ever.
ONLY A MANDATORY CYBER SECURITY TRAINING CAN CHANGE THE OVERALL CULTURE FROM THE CURRET AVERSE ONE.