Companies spend millions every year on products and services to fix all their cyber security vulnerabilities. Then they spend just as much money on highly skilled, well-trained cyber professionals to manage those systems. All those resources are useless when an accountant, or a C-level’s executive assistant, or an HR manager, clicks a link they received in their email and BOOM.
Military strategy and training changes with every conflict and governmental paradigm shift. The only publication that has maintained relevance in the last 2500 years, is Sun Tzu’s The Art of War. I read this book only after I finished my military career, while I was studying for my degree in Counter-Terrorism, and only then could I relate back to my military service and understand why I was trained that way. Sun Tzu only talks about training once in the thirteen chapters but it is a chapter worth reading, “Victory goes to the army who has better trained officers and men [and women]”.
Topics: cyber range
Cyber security is a skill based occupation. The only way to improve a cybersecurity expert skill set, is by accumulating hands-on experience. Similar to fighter pilots, who don’t often face the challenges and threats of the real world , training cybersecurity experts can be effective only by simulating hyper-realistic scenarios which allows cybersecurity individuals and teams to face a real threat, and improve their skills based on the experiences.