Cybersecurity training platform created by ISACA
A real-time cybersecurity training platform and assessment tool has been launched by ISACA.
The CSX Training Platform offers learners an easily accessible, constantly updated education environment.
It provides administrators with clear insights into employee performance so organisations can ensure that they hire and retain the best talent on the front lines of cybersecurity defences.
“We consistently hear from CISOs around the world that cost and accessibility are significant barriers to getting their employees the hands-on training they need to be effective and advance their capabilities,” ISACA CEO Matt Loeb said.
“As part of our mission to narrow the skills gap and help enterprises develop their cyber workforce, ISACA developed the CSX Training Platform.”
According to a recent ISACA survey, 52% of respondents said they believe traditional cybersecurity training options leave staff only moderately to not-at-all prepared. With the growing skills gap, cybersecurity team leaders are looking to formally diagnose specific areas where they need to bolster skills, according to 62% of respondents.
The CSX Training Platform currently includes up to 100 hours of performance-based learning, divided among beginner, intermediate and advanced levels. It also features virtual versions of ISACA’s three CSX Practitioner courses, the CSX Practitioner Bootcamp and the Cybersecurity Fundamentals course. The CSX Labs and courses will be updated continuously, and new ones will be added in response to evolving needs of cybersecurity teams and the threat landscape.
With modules for all levels of practitioners, learners can be sure they are receiving flexible training that is appropriate for their skill level and helps them advance their capabilities in the areas that are most relevant to their work. Enterprises of all sizes can choose to have full access or modify the options to fit their needs. Additionally, with its cloud-based model, training can be accessed by employees on demand and without the expense of travel. Organisations are no longer forced to pull their IT staff away from their job to participate in off-site training.
“Our experts will constantly add to the platform, so we are able to build a training curriculum that supports the immediate and future needs of cybersecurity teams,” ISACA Chief Innovation Officer Frank Schettini said.
“A cybercriminal builds an attack based on his or her domain of expertise. So why wouldn’t organisations enable security professionals to build defences the same way?”
Human resource departments and supervisors can use the platform to determine if applicants, or current employees, have the necessary hands-on skills for positions or promotions. Candidates respond to real-world threats in a live lab environment, and HR professionals will receive an immediate assessment of their skills, giving them a clear picture of what the candidate can and cannot do.
Though cybersecurity threats are growing in number and complexity, the professionals on the front lines of defence are not keeping pace, according to ISACA’s State of Cyber Security 2017 report. Hiring managers are having a hard time finding the right talent, citing issues such as:
- Nearly 1 in 3 organisations say it takes six months or more to fill open cybersecurity positions.
- 37% of organisations say fewer than 1 in 4 candidates are qualified.
- 1 in 5 organisations get fewer than five applicants for open cybersecurity positions.
Additionally, cybersecurity leaders have a critical need to build the skills of their existing staff. The same survey found that fewer than half are confident in their team’s skills to detect and respond to complex cyber incidents.
The CSX Training Platform is currently available for enterprise use. An individual version will be available later in 2017.
Laws surrounding 'revenge porn' will be strengthened, after legislation to stop...
Jamil Farshchi will have the challenging task of helping to restore public confidence in the...
The Australian Cyber Security Centre warns attackers are already exploiting the Cisco ASA...