Incident detection is not merely the result of a technological process, but the output of a socio-technical system where the human has an important part to play. In this paper we focus on the human role within a socio-technically defined incident detection context by discussing the case of the Norwegian Cyber Defence approach. We show that the human has an important part in the process, not only by owning technical skills but also high-level cognitive skills that help critical thinking, decision-making and communication. We further summarize the results of our previous research and discuss how it can be applied, in order to improve educational content of an incident detection team. We strongly believe that the topics discussed in this paper, when implemented and applied, will help transforming the weakest link - the human - to the strongest defence.
CITATION STYLE
Helkala, K., Knox, B. J., Jøsok, Ø., Lugo, R. G., Sütterlin, S., Dyrkolbotn, G. O., & Svendsen, N. K. (2018). Supporting the human in cyber defence. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 10683 LNCS, pp. 147–162). Springer Verlag. https://doi.org/10.1007/978-3-319-72817-9_10
Mendeley helps you to discover research relevant for your work.