Top

Published in:

2020 | OriginalPaper | Chapter

Designing Competency Models for Cybersecurity Professionals for the Banking Sector

Authors : Andrey Vybornov, Natalia Miloslavskaya, Alexander Tolstoy

Published in: Information Security Education. Information Security in Action

Publisher: Springer International Publishing

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

The research results for the main stages of designing competency models (CMs) for cybersecurity (CS) professionals are presented. A strategy for designing such models was formulated. The CS-related terminology and conceptual framework were clarified. Areas, objects, and types of professional activity (PA) as a whole for CS professionals and the banking sector, in particular, were determined. It is proposed to use the role and process models to determine the tasks that employees of banking organizations should solve. The practical issues of developing CMs, which allowed to determine the order of their development and the typical structure, as well as to formulate recommendations on the content of a specific CM, are considered.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter An Analysis and Evaluation of Open Source Capture the Flag Platforms as Cybersecurity e-Learning Tools

next chapter Exploring the Value of a Cyber Threat Intelligence Function in an Organization

Miloslavskaya, N., Tolstoy, A.: Professional competencies level assessment for training of masters in information security. In: Bishop, M., Miloslavskaya, N., Theocharidou, M. (eds.) WISE 2015. IAICT, vol. 453, pp. 135–145. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-18500-2_12CrossRef

Miloslavskaya, N., Tolstoy, A.: ISO/IEC competence requirements for information security professionals. In: Bishop, M., Futcher, L., Miloslavskaya, N., Theocharidou, M. (eds.) WISE 2017. IAICT, vol. 503, pp. 135–146. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-58553-6_12CrossRef

Alsmadi, I., Burdwell, R., Aleroud, A., Wahbeh, A., Al-Qudah, M., Al-Omari, A.: Practical Information Security: A Competency-Based Education Course, p. 317. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-72119-4CrossRef

Mansfield, R.S.: Practical Questions in Building Competency Models. Workitect, Inc. (2005). https://pdfs.semanticscholar.org/91d6/2eceb2b4288bde92b46f4c58c9dc5bcf9827.pdf. Accessed 12 Jan 2020

Competency Models for Enterprise Security and Cybersecurity. Research-Based Frameworks for Talent Solutions. University of Phoenix. Apollo Education Group (2015). http://www.apollo.edu/content/dam/apolloedu/microsite/security_industry/AEG-UOPX%20Security%20Competency%20Models%20report.pdf. Accessed 12 Jan 2020

Gridin, A.: Competence model of a specialist in computer security. https://habr.com/en/post/182176/. Accessed 12 Jan 2020. (in Russian)

Cybersecurity Workforce Competencies: Preparing Tomorrow’s Risk-Ready Professionals. Apollo Education Group, University of Phoenix, (ISC)² and (ISC)² Foundation, 2014, 2015. http://www.apollo.edu/content/dam/apolloedu/microsite/security_industry/AEG-PS-264521-CJS-STEM-CYBERSECURITY.pdf. Accessed 12 Jan 2020

Introduction to the Tools. Report U.S. Department of Labor «Competency Model Clearinghouse public toolkit» . http://www.careeronestop.org/competencymodel/careerpathway/cpwoverview.aspx. Accessed 12 Jan 2020

Competency Model General Instructions. Report U.S. Department of Labor «Competency Model Clearinghouse public toolkit» . http://www.careeronestop.org/competencymodel/careerpathway/CPWGenInstructions.aspx>. Accessed 12 Jan 2020

10.

Reynolds, J.: Competency model? Explained – and how to build them. https://www.tinypulse.com/blog/competency. Accessed 12 Jan 2020

11.

Forst, S.: How to build a competency model. http://hq.teamfit.co/how-to-build-a-competency-model. Accessed 12 Jan 2020

12.

How to Develop a Competency Framework. https://www.lucidchart.com/blog/how-to-develop-a-competency-framework. Accessed 12 Jan 2020

13.

Berry, J.: Competency Model for Cybersecurity. Memorandum for Chief Human Capital Officers. https://www.chcoc.gov/print/2667. Accessed 12 Jan 2020

14.

State Government Information Security Workforce Development Model. A Best Practice Model and Framework. Final Version 1.0, June 2010

15.

The U.S. National Cybersecurity Workforce Framework. https://www.dhs.gov/national-cybersecurity-workforce-framework. Accessed 12 Jan 2020

16.

The Cyber Security Capability Framework & Mapping of ISM Roles. Final Report. Australian Government Information Management Office. June 2010

17.

ISO/IEC 27021:2017 Information technology — Security techniques — Competence requirements for information security management systems professionals

18.

Professional standards of the Russian Federation for information security professionals. http://azi.ru/professionalnye-standarty. Accessed 12 Jan 2020. (in Russian)

19.

Federal Educational Standards of the Russian Federation in the Information Security Direction. http://azi.ru/obrazovatelnye-standarty. Accessed 12 Jan 2020. (in Russian)

20.

ISO/IEC 27032:2012 Information technology – Security techniques – Guidelines for cybersecurity

21.

ISO/IEC 27000:2014 Information technology — Security techniques — Information security management systems — Overview and vocabulary

22.

Definition of Cybersecurity – Gaps and overlaps in standardisation.- Report of European Union Agency for Network and Information Security (ENISA), v1.0, December 2015. http://www.enisa.europa.eu/. Accessed 12 Jan 2020

23.

Miloslavskaya, N.G., Tolstaya, S.A.: Cyber threats for organizations of financial market infrastructures. Besopasnost informachionnih technologiy 1, 115–126 (2016). (in Russian)

24.

Bank of Russia Standard STO BR IBBS-1.0-2014 «Maintenance of Information Security of the Russian Banking System Organizations. General Provisions» . (in Russian)

25.

GOST 57580.1-2017. Security of financial (banking) operations. Protection of information of financial organizations. The basic composition of organizational and technical measures. (in Russian)

26.

Vybornov, A.O., Kurilo, A.P., Kharlamov, V.P.: The role model of employees of a banking institution in the field of information security. Besopasnost informachionnih technologiy 3, 90–102 (2012). (in Russian)

Title: Designing Competency Models for Cybersecurity Professionals for the Banking Sector
Authors: Andrey Vybornov
Natalia Miloslavskaya
Alexander Tolstoy
Publisher: Springer International Publishing
Book: Information Security Education. Information Security in Action
Print ISBN: 978-3-030-59290-5

Electronic ISBN: 978-3-030-59291-2

Copyright Year: 2020
DOI: https://doi.org/10.1007/978-3-030-59291-2_6

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner