Get 20M+ Full-Text Papers For Less Than $1.50/day. Start a 14-Day Trial for You or Your Team.

Learn More →

Knowledge, Skills, and Abilities for Specialized Curricula in Cyber Defense

Knowledge, Skills, and Abilities for Specialized Curricula in Cyber Defense More specialized cybersecurity education programs are needed to address workforce needs, but it is unclear which knowledge, skills, and abilities (KSAs) fulfil industry needs. We interviewed 48 professionals within four cyber defense specialty areas: (1) Cyber Network Defense Analysis, (2) Cyber Network Defense Infrastructure Support, (3) Incident Response, and (4) Vulnerability Assessment and Management. The professionals rated a number of specialized KSAs along two dimensions: how important the KSA was to their job and how difficult the KSA was to learn. Overall, communication and other non-technical skills were rated as being very important for all cyber defense jobs. Findings indicated that, for some specialty areas, technical knowledge and skills vary considerably between jobs and so the ability to teach oneself is more valuable than proficiency in any one KSA. Findings may be used to inform the development of general cybersecurity curricula, as well as curricula that focus on Cyber Network Defense Analysis, Cyber Network Defense Infrastructure Support, or Vulnerability Assessment and Management. http://www.deepdyve.com/assets/images/DeepDyve-Logo-lg.png ACM Transactions on Computing Education (TOCE) Association for Computing Machinery

Knowledge, Skills, and Abilities for Specialized Curricula in Cyber Defense

Download PDF

Knowledge, Skills, and Abilities for Specialized Curricula in Cyber Defense

Knowledge, Skills, and Abilities for Specialized Curricula in Cyber Defense: Results from Interviews with Cyber Professionals MIRIAM E. ARMSTRONG, KEITH S. JONES, and AKBAR SIAMI NAMIN, Texas Tech University DAVID C. NEWTON, Federal Aviation Administration & Texas Tech University More specialized cybersecurity education programs are needed to address workforce needs, but it is unclear which knowledge, skills, and abilities (KSAs) fulfil industry needs. We interviewed 48 professionals within four cyber defense specialty areas: (1) Cyber Network Defense Analysis, (2) Cyber Network Defense Infras- tructure Support, (3) Incident Response, and (4) Vulnerability Assessment and Management. The professionals rated a number of specialized KSAs along two dimensions: how important the KSA was to their job and how difficult the KSA was to learn. Overall, communication and other non-technical skills were rated as being very important for all cyber defense jobs. Findings indicated that, for some specialty areas, technical knowledge and skills vary considerably between jobs and so the ability to teach oneself is more valuable than proficiency in any one KSA. Findings may be used to inform the development of general cybersecurity curricula, as well as curricula that focus on Cyber Network Defense Analysis, Cyber Network Defense Infrastructure Support, or Vulnerability Assessment and Management. CCS Concepts: • Security and privacy • Social and professional topics → Computing education pro- grams; Employment issues; Additional Key Words and Phrases: Cyber-defense, cybersecurity education, curricula development, NICE cybersecurity workforce framework ACM Reference format: Miriam E. Armstrong, Keith S. Jones, Akbar Siami Namin, and David C. Newton. 2020. Knowledge, Skills, and Abilities for Specialized Curricula in Cyber Defense: Results from Interviews with Cyber Professionals. ACM Trans. Comput. Educ. 20, 4, Article 29 (November 2020), 25 pages....
Loading next page...
 
/lp/association-for-computing-machinery/knowledge-skills-and-abilities-for-specialized-curricula-in-cyber-Q5892n1PF7
Publisher
Association for Computing Machinery
Copyright
Copyright © 2020 ACM
ISSN
1946-6226
eISSN
1946-6226
DOI
10.1145/3421254
Publisher site
See Article on Publisher Site

Abstract

More specialized cybersecurity education programs are needed to address workforce needs, but it is unclear which knowledge, skills, and abilities (KSAs) fulfil industry needs. We interviewed 48 professionals within four cyber defense specialty areas: (1) Cyber Network Defense Analysis, (2) Cyber Network Defense Infrastructure Support, (3) Incident Response, and (4) Vulnerability Assessment and Management. The professionals rated a number of specialized KSAs along two dimensions: how important the KSA was to their job and how difficult the KSA was to learn. Overall, communication and other non-technical skills were rated as being very important for all cyber defense jobs. Findings indicated that, for some specialty areas, technical knowledge and skills vary considerably between jobs and so the ability to teach oneself is more valuable than proficiency in any one KSA. Findings may be used to inform the development of general cybersecurity curricula, as well as curricula that focus on Cyber Network Defense Analysis, Cyber Network Defense Infrastructure Support, or Vulnerability Assessment and Management.

Journal

ACM Transactions on Computing Education (TOCE)Association for Computing Machinery

Published: Nov 13, 2020

Keywords: Cyber-defense

References

  • ABET Approves Accreditation Criteria for Undergraduate Cybersecurity Programs
  • Knowledge and skill requirements for entry level information technology workers: Do employers in the IT industry vie these differently than employers in other industries
    Aasheim, Cheryl L.; Williams, Susan R.
  • Log analysis of cyber security training exercises
    Abbott, Robert G.; McClain, Jonathan; Anderson, Benjamin; Nauer, Kevin; Silva, Austin; Forsythe, Chris
  • IT workforce trends: Implications for IS programs
    Abraham, Thomas; Beath, Cynthia; Bullen, Christine; Gallagher, Kevin; Goles, Tim; Kaiser, Kate; Simon, Judith
  • Stability of response characteristics of a Delphi panel: application of bootstrap data expansion
    Akins, Ralitsa B.; Tolson, Homer; Cole, Bryan R.
  • A systems approach to cyber assurance education
    Andel, Todd R.; McDonald, J. Todd
  • A bootstrap confidence interval for skewness and kurtosis and properties of t-test in small samples from normal distribution
    Ankarali, Handan; Yazici, Ayşe Canan; Ankarali, Seyit
  • Framework for developing a brief interview to understand cyber defense work: An experience report
    Armstrong, Miriam E.; Jones, Keith S.; Namin, Akbar Siami
  • Profiling cybersecurity competition participants: Self-efficacy, decision-making and interests predict effectiveness of competitions as a recruitment tool
    Bashir, Masooda; Wee, Colin; Memon, Nasir; Guo, Boyi
  • Integrating soft skills assessment through university, college, and programmatic efforts at an AACSB accredited institution
    Beard, Debbie; Schweiger, Dana; Surendran, Ken
  • Integrating soft skills into engineering education for increased student throughput and more professional engineers
    Berglund, Aseel; Heintz, Fredrik
  • Cybersecurity curriculum development: Introducing specialties in a graduate program
    Bicak, Ali; Liu, Xiang Michelle; Murphy, Diane
  • Assessment and classroom learning
    Black, Paul; Wiliam, Dylan
  • Black Hat celebrates 20 years with record breaking USA event
    Hat, Black
  • Cyber Human research from the cyber operator’s view
    Borghetti, Brett; Funke, Gregory; Pastel, Robert; Gutzwiller, Robert
  • Information systems security job advertisement analysis: Skills review and implications for information systems curriculum
    Brooks, Nita G.; Greer, Timothy H.; Morris, Steven A.
  • Enhancing and undermining intrinsic motivation: The effects of task-involving and ego-involving evaluation on interest and performance
    Butler, Ruth
  • Ideas for adding soft skills education to service learning and capstone courses for computer science students
    Carter, Lori
  • The 5 most in-demand cyber security jobs for 2019
    Casesa, Phil
  • Hacking the skills shortage: A study of the international shortage in cybersecurity skills
    Strategic, Center for; Studies, International
  • Using cognitive task analysis to investigate the contribution of informal education to developing cyber security expertise
    Champion, Michael; Jariwala, Shree; Ward, Paul; Cooke, Nancy J.
  • Team-based cyber defense analysis
    Champion, Michael A.; Rajivan, Prashanth; Cooke, Nancy J.; Jariwala, Shree
  • Ransomware strikes CDOT for second time even as agency still recovering from first SamSam attack
    Chuang, Tamara
  • Mind this Gap: Criminal hacking and the global cybersecurity skills shortage, a critical analysis
    Cobb, Stephen
  • Cyber defense competitions and information security education: An active learning solution for a capstone course
    Conklin, Art
  • Re-engineering cybersecurity education in the US: an analysis of the critical factors
    Conklin, Wm Arthur; Cline, Raymond E.; Roosa, Tiffany
  • Cyber Acquisition Professionals Need Expertise (But They Don’t Necessarily Need to Be Experts)
    Cook, Michael
  • Job Analysis Results for Malicious-code Reverse Engineers: A Case Study
    Cowley, Jennifer
  • The future cybersecurity workforce: Going beyond technical skills for successful cyber performance
    Dawson, Jessica; Thomson, Robert
  • The real work of computer network defense analysts
    D’Amico, Anita; Whitley, Kirsten
  • Computers, bootstraps, and statistics
    Efron, B.
  • Data Breach Costs Soaring
    Evans, Steve
  • Visualizing cyber security: Usable workspaces
    Fink, Glenn A.; North, Christopher L.; Endert, Alex; Rose, Stuart
  • Using the NICE framework as a metric to analyze student competencies
    Fowler, Jennifer; Evans, Nate
  • Examination of Personality Characteristics Among Cybersecurity and Information Technology Professionals
    Freed, Sarah E.
  • 2017 Global Information Security Workforce Study: Benchmarking workforce capacity and response to cyber risk
    Frost,
  • Setting the scope of concept inventories for introductory computing subjects
    Goldman, Ken; Gross, Paul; Heeren, Cinda; Herman, Geoffrey L.; Kaczmarczyk, Lisa; Loui, Michael C.; Zilles, Craig
  • Developing expertise for network intrusion detection
    Goodall, John R.; Lutters, Wayne G.; Komlodi, Anita
  • Skills and characteristics of successful cybersecurity advocates
    Haney, Julie M.; Lutters, Wayne G.
  • Ethical hacking: Educating future cybersecurity professionals
    Hartley, Regina; Medlin, Dawn; Houlik, Zach
  • Mastering the Cyber Security Skills Crisis: Realigning Educational Outcomes to Industry Requirements
    Henry, Adam P.
  • Holistically building the cybersecurity workforce
    Hoffman, Lance; Burley, Diana; Toregas, Costis
  • Skill mastery and the formation of graduate identity in bachelor graduates: Evidence from australia
    Jackson, Denise
  • Learning How to Learn: Tools for Schools
    James, Mary; Black, Paul; Carmichael, Patrick; Conner, Colin; Dudley, Peter; Fox, Alison; Frost, David; Honour, Leslie; MacBeath, John; Marshall, Bethan; et al,
  • Cybersecurity Curricula 2017: Curriculum Guidelines for Post-Secondary Degree Programs in Cybersecurity
    Education, Joint Task Force on Cybersecurity
  • The core cyber-defense knowledge, skills, and abilities that cybersecurity students should learn in school: Results from interviews with cybersecurity professionals
    Jones, Keith S.; Namin, Akbar Siami; Armstrong, Miriam E.
  • What competences do employers, staff and students expect from a computer science graduate? In Proceedings of the 2009 39th IEEE Frontiers in Education Conference
    Kabicher, Sonja; Motschnig-Pitrik, Renate; Figl, Kathrin
  • Preparing the Pipeline: The US Cyber Workforce for the Future (Defense Horizons, Number 72)
    Kay, David J.; Pudas, Terry J.; Young, Brett
  • Maintaining a cybersecurity curriculum: Professional certifications as valuable guidance
    Knapp, Kenneth J.; Maurer, Christopher; Plachkinova, Miloslava
  • High-Impact Educational Practices: What They Are, Who Has Access to Them, and Why They Matter
    Kuh, George D.
  • An interdisciplinary approach to educating an effective cyber security workforce
    LeClair, Jane; Abraham, Sherly; Shih, Lifang
  • An experience report on undergraduate cyber-security education and outreach
    Locasto, M.; Sinclair, Sara
  • Human factors in cyber warfare II: Emerging perspectives
    Mancuso, Vincent F.; Christensen, James C.; Cowley, Jennifer; Finomore, Victor; Gonzalez, Cleotide; Knott, Benjamin
  • Toward effective cybersecurity education
    McGettrick, Andrew
  • Balancing software engineering education and industrial needs
    Moreno, Ana M.; Sanchez-Segura, Maria-Isabel; Medina-Dominguez, Fuensanta; Carvajal, Laura
  • Data breaches In healthcare totaled over 112 million records in 2015
    Munro, Dan
  • Cyber security jobs: Job descriptions, requirements and salaries for today’s hottest roles
    Nadeau, Michael
  • [n
    Administration, National Security
  • National Initiative for Cybersecurity Eduction (NICE) Cybersecurity Workforce Framework
    Newhouse, William; Keith, Stephanie; Scribner, Benjamin; Witte, Greg
  • UK beefs up cyber warfare plans
    News, BBC
  • A primer to bootstrapping; and an overview of doBootstrap
    Ong, Desmond C.
  • Identifying core concepts of cybersecurity: Results of two delphi processes
    Parekh, Geet; DeLatte, David; Herman, Geoffrey L.; Oliva, Linda; Phatak, Dhananjay; Scheponik, Travis; Sherman, Alan T.
  • Team building in multidisciplinary client-sponsored project courses
    Pastel, Robert; Seigel, Marika; Zhang, Wei; Mayer, Alex
  • Behavioral cybersecurity: Human factors in the cybersecurity curriculum
    Patterson, Wayne; Winston, Cynthia; Fleming, Lorraine
  • Hackers are targeting nuclear facilities, homeland security dept
    Perlroth, Nicole
  • Stimulating curiosity to enhance learning
    Pluck, Graham; Johnson, H. L.
  • What skills do you need to work in cyber security? A look at the Australian market
    Potter, Leigh Ellen; Vickers, Gregory
  • Analyzing cybersecurity job market needs in morocco by mining job ads
    Rahhal, Ibrahim; Makdoun, Ibtissam; Mezzour, Ghita; Khaouja, Imane; Carley, Kathleen; Kassou, Ismail
  • Scoping the cyber security body of knowledge
    Rashid, Awais; Danezis, George; Chivers, Howard; Lupu, Emil; Martin, Andrew; Lewis, Makayla; Peersman, Claudia
  • The role of cyber-security in information technology education
    Rowe, Dale C.; Lunt, Barry M.; Ekstrom, Joseph J.
  • Challenges and reflections in designing cyber security curriculum
    Santos, Henrique; Pereira, Teresa; Mendes, Isabel
  • Motivation and attitude of computer engineering students toward soft skills
    Schipper, Mariecke; van der Stappen, Esther
  • Teaching the fundamentals of biological data integration using classroom games
    Schneider, Maria Victoria; Jimenez, Rafael C.
  • Toward cyber workforce development: An exploratory survey of information security professionals
    Schuster, David; Wu, Steven
  • Addressing the cybersecurity workforce development problem—Augusta university’s contribution
    Sexton, Joanne; Ribble, Karen; Perrin, Franklin
  • Atlanta paralyzed for more than a week by cyber attack
    Shamma, Tasnim
  • A Guide to the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework (2
    Shoemaker, Dan; Kohnke, Anne; Sigler, Ken
  • The ABET “professional skills”—Can they be taught? Can they be assessed? J
    Shuman, Larry J.; Besterfield-Sacre, Mary; McGourty, Jack
  • How hackers think: A study of cybersecurity experts and their mental models
    Summers, Timothy; Lyytinen, Kalle J.; Lingham, Tony; Pierce, Eugene A.
  • Engaging learners in cybersecurity careers: Lessons from the launch of the national cyber league
    Tobey, David H.; Pusey, Portia; Burley, Diana L.
  • Wanted: Students to enter cybersecurity field
    UPI.,
  • Addressing human factors gaps in cyber defense
    Vieane, Alex; Funke, Gregory; Gutzwiller, Robert; Mancuso, Vincent; Sawyer, Ben; Wickens, Christopher
  • A controlled experiment on python vs c for an introductory programming course: Students’ outcomes
    Wainer, Jacques; Xavier, Eduardo C.
  • [n
    Wikipedia,
  • The success factors powering industry-academia collaboration
    Wohlin, Claes; Aurum, Aybuke; Angelis, Lefteris; Phillips, Laura; Dittrich, Yvonne; Gorschek, Tony; Grahn, Hakan; Henningsson, Kennet; Kagstrom, Simon; Low, Graham; et al,
  • An undergraduate information security program: More than a curriculum
    Woodward, Belle; Imboden, Thomas; Martin, Nancy L.
  • Redesigning an information system security curriculum through application of traditional pedagogy and modern business trends
    Woodward, Belle S.; Young, Travis
  • Cyber security skill set analysis for common curricula development
    Yamin, Muhammad Mudassar; Katt, Basel
  • Teaching business analytics
    Yang, Li; Liu, Xumin
  • Making bootstrap statistical inferences: A tutorial
    Zhu, Weimo
  • Curiosity and open inquiry learning
    Zion, Michal; Sadeh, Irit