Abstract:

Problems with cybersecurity changed dramatically over the past decade also due to the intensive use of digital technology and hacker attacks. Such issues, including risks and vulnerabilities, require more cybersecurity professionals as well as prepared employees and employers. But cybersecurity experts are missing, many cybersecurity jobs in almost all countries are free, and employers and employees are not aware of cybersecurity measures. Despite the various cybersecurity educational frameworks, the increasing number of successful cyber-attacks raises questions about their effectiveness (Chowdhury et al.,2022). Cybersecurity educational frameworks and more tailored-oriented education and training are necessary which also incorporate individuals' learning styles and cognitive abilities (Bratianu, C., Hadad, S., and Bejinaru, R. (2020).
Holistic cybersecurity education and training for the development of cybersecurity competencies of professionals and employees as well as their awareness should include identification of stakeholder’s roles, implementation paths for competence development, and training methods for training to achieve corresponding competencies. Often cybersecurity breaches due to human errors of personnel can be used as evidence training scenarios; positively identified cybersecurity behaviors should be trained including interdisciplinary evidence-based approaches because cybersecurity is an interdisciplinary field.
In this paper, it is shown how could be used for the development and assessment of cybersecurity training particularly for employers and employees from SMEs in this context (Hamburg, 2022).
PBL (IPBL) (Husain et al., 2009) is an effective interdisciplinary holistic approach to curriculum design, implementation, and assessment. It is founded on Seven Instructional Principles that focus on learners conducting research, integrating theory and practice, and applying knowledge and skills to develop appropriate solutions to a problem in a real-world context, like cybersecurity attacks. SMEs particularly have limited resources and need help.
In the design and implementation of a cybersecurity training program for employers and employees, the results of the European project InCyT will be used. The developed Cybersecurity Competence Framework will be used for developing a comprehensive education program that can contribute to providing a secure cyber environment at multiple levels, ranging from individual to medium-sized enterprises. Individual roles, responsibilities, and required domain skill sets will be incorporated by using Intervention mapping to ensure competencies in this context. Digital-supported IPBL will be used for the training program supporting the development of critical thinking (Hamburg, 2022).

Keywords:

Holistic cybersecurity education, Intervention mapping (IM), Interdisciplinary problem-based learning (IPBL), Project InCyT.