BLUF

This topic is asking me about how I would allocate funding in cybersecurity regarding training and any additional technology that could be needed. Training is very important in cybersecurity because it teaches about cyber networks, how they operate and how to protect them. Cybersecurity itself is irrelevant if no one has a proper understanding of cybersecurity.

Cybersecurity Training

            Because we live in a time where most of the business’s important information is online it’s important that the individuals that have access to and handle this information have an understanding of the risks that can be associated with this access. if an employee handles the finances of an organization without understanding how to protect this information from cyber-attacks it puts the company at risk. Cybersecurity training is important because it teaches employees effective ways to secure and protect their cyber workspace (CybSafe, 2022). Training would allow employees to recognize potential cyber-attacks and allow them to avoid and mitigate the risks of these attacks (CybSafe, 2022). It’s important that an employee could recognize the difference between a legitimate e-mail from an authorized individual from a phishing attack from an individual with malicious intentions (CybSafe, 2022). This training is not only limited to online attacks but also ways to protect physical information that ties into this online information. This can include RFID, which is something that allows you to use contact list interaction with cards by radio frequency (Street, 2022). The downside of RFID is that malicious individuals can use skimming devices to pick up a card signal and use it (Street, 2022). So, if an organization is using RFID cards to prevent unauthorized access all someone would need is a skimming device and they’re able to access secure locations that would otherwise be inaccessible to them (Street, 2022). Nowadays there are RFID-blocking wallets that block these skimming signals and protect the card or ID that has RFID on it (Street, 2022).

Position

            I would allocate more funding towards training because without training cyber security would be obsolete. Even if you had the most recent cybersecurity technology that could defend you against most cyber threats, it’s irrelevant if the humans that are using this technology don’t have an understanding of what it does, or how to use it. And even if an organization has this technology that doesn’t mean it is the human aspect of cybersecurity. This means that if an employee were to still fall for a phishing attack or they leave sticky notes of all their passwords lying around, there are still ways for an attack to happen. With proper training, an organization that may not have the best technology could still have great cyber security because of the training they have provided to their employees.

Conclusion

            Although technology and training are both important aspects of cybersecurity, I view training as having a bigger impact on security. Because most organizations require humans to handle important information there is still a chance of humans making this information vulnerable. Proper cybersecurity training helps to make that information less vulnerable and gives employees the proper tools to identify cyber threats or attacks. Cybertechnology is worthless without individuals having a proper understanding of cybersecurity.

References

CybSafe, C. S. (2022, October 24). 7 reasons why security awareness training is important. CybSafe. Retrieved November 19, 2022, from https://www.cybsafe.com/blog/7-reasons-why-security-awareness-training-is-important/

Mimecast, M. (n.d.). What is Security Awareness Training and why is it important? Mimecast. Retrieved November 20, 2022, from https://www.mimecast.com/content/what-is-security-awareness-training/#:~:text=Effective%20security%20awareness%20training%20helps,via%20email%20and%20the%20web.

Street, C. (2022, November 19). RFID blocking – what is it & do you need to worry? CyberGhost Privacy Hub. Retrieved November 20, 2022, from https://www.cyberghostvpn.com/en_US/privacyhub/rfid-blocking/#:~:text=CyberGhost%20VPN%20Now!-,FAQ,on%20cards%20with%20RFID%20technology.