Abstract:

The article addresses education as the smartest investment in cybersecurity. One of the most intriguing findings is that 95% of security incidents involve human errors. Most security attacks are concerned with human weakness to attract victims and persuade them to give involuntary access to personal and sensitive information. To eliminate errors caused by social engineering and negligence and to increase users’ awareness of the threats, technologies and services should be combined with education. Education in the field of cybersecurity is a necessary consideration for both individuals and families, as well as for businesses, governments and educational institutions. For families and parents, the online safety of children is of major importance. Equally essential is the protection of information that might affect your personal finances, and precious family assets, such as photos, videos etc. For educational institutions, it is important to understand the link between the online world and the "real" one. Teachers, staff, students, tutors, pupils, etc. should be trained in appropriate on-line behavior to reduce vulnerabilities and create a safer online environment. A better awareness through security education can help enterprises protect their intellectual property and ensure availability of services. Governments hold an enormous amount of personal data and records of their citizens, as well as confidential government information, which most often serves as a target for attack. Only through education and awareness, the confidence in public services can be gained. Cybersecurity depends on education.

References:

[1] HAIBER, O. and MORRILL, S., Passport to the Future: A Secondary School Cyber Education Case Study, https://www.uscybersecurity.net/csmag/passport-to-the-future-a-secondary-school cyber-education-case-study/

[2] VIVEROS, M., Cyber Security Depends on Education, https://hbr.org/2013/06/cyber-security-depends-on-educ

[3] Геворг Маргаров, Воспитание защитников информации, https://www.osp.ru/os/2009/04/ 9298350

[4] Анастасия Богатырева, Кадровые риски, https://bisjob.ib-bank.ru/publikaciya/104

[5] Валерий Васильев, Дмитрий Сергеев, Человек — самое слабое звено в ИБ, http://www.infosecurity.ru/_gazeta/content/100305/art3.shtml

[6] Шнайер Б., Секреты и ложь. Безопасность данных в цифровом мире, СПб.: Питер, 2003.

[7] Александр Анисимов, Менеджмент в сфере информационной безопасности. Департамент информационной безопасности и работа с персоналом,http://www.intuit.ru/studies/courses/563/419/lecture/9580?page=2

[8] MITNICK, K. and SIMON, W., The Art of Deception: Controlling the Human Element of Security, Indianapolis (Wiley), 2002.

[9] TRICIA A. H., Cybersecurity Culture: The Root of the Problem, https://www.uscybersecurity.net/cybersecurity-culture/