Introduction to Information Security: From Formal Curriculum to Organisational Awareness

2022 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW) Pub Date : 2022-06-01 DOI:10.1109/eurospw55150.2022.00055

P. Delport, J. V. Niekerk, Rayne Reid

{"title":"Introduction to Information Security: From Formal Curriculum to Organisational Awareness","authors":"P. Delport, J. V. Niekerk, Rayne Reid","doi":"10.1109/eurospw55150.2022.00055","DOIUrl":null,"url":null,"abstract":"Many organisations responded to the recent global pandemic by moving operations online. This has led to increased exposure to information security-related risks. There is thus an increased need to ensure organisational information security awareness programs are up to date and relevant to the needs of the intended target audience. The advent of online educational providers has similarly placed increased pressure on the formal educational sector to ensure course content is updated to remain relevant. Such processes of academic reflection and review should consider formal curriculum standards and guidelines in order to ensure wide relevance. This paper presents a case study of the review of an Introduction to Information Security course. This review is informed by the Information Security and Assurance knowledge area of the ACM/IEEE Computer Science 2013 curriculum standard. The paper presents lessons learned during this review process to serve as a guide for future reviews of this nature. The authors assert that these lessons learned can also be of value during the review of organisational information security awareness programs.","PeriodicalId":275840,"journal":{"name":"2022 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)","volume":"202 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/eurospw55150.2022.00055","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Many organisations responded to the recent global pandemic by moving operations online. This has led to increased exposure to information security-related risks. There is thus an increased need to ensure organisational information security awareness programs are up to date and relevant to the needs of the intended target audience. The advent of online educational providers has similarly placed increased pressure on the formal educational sector to ensure course content is updated to remain relevant. Such processes of academic reflection and review should consider formal curriculum standards and guidelines in order to ensure wide relevance. This paper presents a case study of the review of an Introduction to Information Security course. This review is informed by the Information Security and Assurance knowledge area of the ACM/IEEE Computer Science 2013 curriculum standard. The paper presents lessons learned during this review process to serve as a guide for future reviews of this nature. The authors assert that these lessons learned can also be of value during the review of organisational information security awareness programs.

查看原文本刊更多论文

信息安全导论:从正规课程到组织意识

许多组织通过将业务转移到网上来应对最近的全球大流行。这增加了信息安全相关风险的暴露。因此，越来越需要确保组织的信息安全意识计划是最新的，并与预期目标受众的需求相关。在线教育提供商的出现同样给正规教育部门带来了更大的压力，以确保课程内容的更新以保持相关性。这种学术反思和审查过程应考虑到正式的课程标准和准则，以确保广泛的相关性。这篇文章提出了一个案例研究的审查信息安全导论课程。本次审查是根据ACM/IEEE计算机科学2013课程标准中的信息安全和保障知识领域进行的。本文介绍了在审查过程中吸取的经验教训，以作为今后审查这种性质的指南。作者断言，这些经验教训在审查组织信息安全意识程序时也可能是有价值的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)

自引率

0.00%

发文量