Building Security Competence.
The art of learning by doing.
Awareness is knowledge of a situation or fact. Whereas, competence is the ability to implement the knowledge to a high degree of effectiveness. By expanding the focus from Security Awareness to include Cybersecurity competence, organizations can build a Cybersecurity competent workforce. This gives the business greater confidence to pursue their goals.
What is Learning by Doing?
Doing an activity, analysing and evaluating the outcomes (consequences). In short, acquiring experience. To build a knowledge base, one must acquire experiences.
How does ‘learning by doing’ help with Cybersecurity Training?
Learning by doing helps the learner compare and contrast various experiences. For instance, in a Cybersecurity learning experience, the learner can experience the risk of making a wrong decision. Consequently, this type of training approach makes the learner;
- actively involved in a Cybersecurity risk situation
- use and sharpen their analytical skills to mitigate the risk
- take decisions based on the analysis
- reflect on the outcome of the decision
In essence, learning by doing enables the learner to acquire experiences. Experiences contribute to developing competence, in this case, Cybersecurity competence.
What if things go wrong?
Simulation based Cybersecurity training re-creates risks in a safe and controlled virtual environment. This helps learners to experience risks without any real risks. The learner can make wrong decisions and experience the consequence without endangering the business.
To summarize, good decisions come from experience. But, experience comes from making wrong decisions. Hence, go ahead and make those wrong decisions without any risks.
How does this type of training differ?
Learning by doing differentiates with the academic type of learning by immersion, analysis and experience. These experiences, positively trigger responses in the learner when confronted with a similar risk in the real world. In effect, by using Cybersecurity training that uses the “learning by doing” approach, the business builds a workforce equipped with valuable Cybersecurity Skills.