What is the big deal in Information Security Education? Jidaw asks: are IT professionals who know nothing about network or information security relevant? In today’s IT driven world of convenience and hydra headed threats, the need for individuals with information security skills has never been greater.
Of what use is a network that has become the launching pad of hackers? As tech pervades all of society one of the greatest areas of demand is security expertise. Security gaps in IT and networking widens every day. Forget products, think expertise. Surveys and research continually point to the fact that human beings – users, professionals, managers and policy makers are the weakest link usually caused by lack of knowledge.
Security conscious and knowledgeable professionals are essential to ensure safety in our dependence on information technology for improved communications, operations, efficiency and innovation. We must take risks if we must grow by investing in IT; information security enables us to take calculated risks. How do you manage your risks in an informed manner? Ignorance is no excuse in the knowledge world.
So Who says Information Security Education isn’t a Big Deal?
- Who will setup the tools, implement the scenarios and ensure defence is grounded. Come on people, the latest security gadgets can’t help if your team lacks the required thinking and abilities. Surely we’re not expecting the tools to configure themselves. Thinking infrastructure only is limiting.
- Who draws up the contingency, disaster recovery plans and other policies? The solid fact is that information security capacity is what determines the quality of protection you derive from your information security resources and infrastructure. In fact education is the engine behind information security.
- It goes further than being able to implement, troubleshoot and configure. Can your team align information security to your goals and objectives?
- Without education how will the organization leverage on information security to create a secure and better future?
Security is everybody‘s job
- The defenders, the investigators, the policy makers, the scanners, architects all have a role to play. Even outside the IT sphere has Nigeria’s legal system (lawyers, security agencies, law enforcement and judicial officers) woken up to the challenges of information security and the new reality of the revamped evidence act? What is really being done about the Cybersecurity bill?
- Capacity building is required to develop capabilities in various critical areas for protection, detection and investigation purposes. The African Information Security Association (AISA) promotes information security as well as capacity building efforts in Nigeria and Africa. The Computer Forensics Institute of Nigeria (CFIN) champions the use of technology to conduct forensic investigations to present facts and opinions about information for use as digital, legal evidence.
- For example, in 2012, in line with the need for practical educational initiatives in information security, Network Security Extra Plus, a hands-on program was a Jidaw initiative created to meet the rising demand for individuals with network security knowledge and skills. It was based on the world’s most widely recognized certification programs for the fundamentals in Networking and Security (CompTIA Network+ and Security+).
- The Information security sphere is quite wide and programs exist and can be developed to meet the varying but important and in-demand needs. Information security is certainly a big deal.
Without building capacity in information security, we are setting ourselves up for disaster in the knowledge driven economy. Ignorance is a barrier, Knowledge opens doors.
HAVE YOUR SAY: Hope you have found this piece from Jidaw useful. what are your ideas? So is Information Security Education a Big Deal? Please share your thoughts and comments.
Innovation and Development Advisor, ICT at Jidaw
ICT Development Advisory Support and Consulting