State-Level Views on Professional Competencies in the Field of IoT and Cloud Information Security

2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW) Pub Date : 2016-08-01 DOI:10.1109/W-FiCloud.2016.31

N. Miloslavskaya, A. Tolstoy

{"title":"State-Level Views on Professional Competencies in the Field of IoT and Cloud Information Security","authors":"N. Miloslavskaya, A. Tolstoy","doi":"10.1109/W-FiCloud.2016.31","DOIUrl":null,"url":null,"abstract":"Two important areas of our lives -- Internet of Things (IoT) and Clouds -- are based on the general information and communication technologies (ICT) concepts. If so, the modern state-level requirements for the competencies of information security (IS) professionals are completely applicable to IS professionals needed for the IoT and Clouds. That is why the peculiarities of American, Australian and European approaches to the development of IS professional competencies are discussed on four best-in-the-breed examples: \"The Competency and Functional Framework for IT Security Workforce Development\" by the U. S. DHS/NCSD, the NICE by NIST, \"The Cyber Security Capability Framework & Mapping of Information Security Manual Roles\" by AGIMO and \"The European e-Competence Framework\" by the European Commission. Pros and cons of all approaches are marked. A short prediction on the new international standard ISO/IEC 27021 content with IS professional competencies is proposed. The discussion of all these documents' applicability to the IoT and Cloud IS professional competencies concludes the paper.","PeriodicalId":441441,"journal":{"name":"2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/W-FiCloud.2016.31","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

Abstract

Two important areas of our lives -- Internet of Things (IoT) and Clouds -- are based on the general information and communication technologies (ICT) concepts. If so, the modern state-level requirements for the competencies of information security (IS) professionals are completely applicable to IS professionals needed for the IoT and Clouds. That is why the peculiarities of American, Australian and European approaches to the development of IS professional competencies are discussed on four best-in-the-breed examples: "The Competency and Functional Framework for IT Security Workforce Development" by the U. S. DHS/NCSD, the NICE by NIST, "The Cyber Security Capability Framework & Mapping of Information Security Manual Roles" by AGIMO and "The European e-Competence Framework" by the European Commission. Pros and cons of all approaches are marked. A short prediction on the new international standard ISO/IEC 27021 content with IS professional competencies is proposed. The discussion of all these documents' applicability to the IoT and Cloud IS professional competencies concludes the paper.

查看原文本刊更多论文

《物联网与云信息安全领域专业能力的国家层面看法》

我们生活中的两个重要领域——物联网(IoT)和云——都是基于一般的信息和通信技术(ICT)概念。如果是这样，那么信息安全(IS)专业人员的现代国家级能力要求完全适用于物联网和云所需的IS专业人员。这就是为什么美国、澳大利亚和欧洲发展信息系统专业能力的方法的特点是通过四个最好的例子来讨论的:美国国土安全部/NCSD的“IT安全劳动力发展的能力和功能框架”，NIST的NICE, AGIMO的“网络安全能力框架和信息安全手册角色映射”和欧盟委员会的“欧洲电子能力框架”。所有方法的优点和缺点都被标记出来。对新国际标准ISO/IEC 27021内容与信息系统专业能力进行了简要预测。讨论了所有这些文档对物联网和云信息系统专业能力的适用性，从而总结了本文。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW)

自引率

0.00%

发文量