With IT security training often having lengthy gaps in between sessions, information help by security professionals can often become stale, and lag behind the cutting-edge information used by hackers. To help ensure those working to defend your data and resources are best prepared, perhaps it’s time to revisit the approaches used for cybersecurity training. An article in eWeek suggests:
- Emphasizing individual learning, to allow all team members to learn at their appropriate paces
- Allowing individuals to customize their training packages, so as to best suit their needs and availability
- Attempting to create engaging exercises, rather than relying on reading of textbooks
- Increasing responsiveness, to deploy and update training tools on an ongoing basis
- Reproducing actual threats, rather than relying on more theoretical approaches
- Reviewing results, to identify gaps or weaknesses in training sessions
While cybersecurity will almost always lag behind attackers, the introduction of more robust and varied training techniques should help to keep professionals up to date and engaged.
Source:
https://www.eweek.com/development/why-cybersecurity-training-needs-a-refresh
