Authors:
Gencer Erdogan
1
;
Åsmund Hugo
1
;
Antonio Álvarez Romero
2
;
Dario Varano
3
;
Niccolò Zazzeri
4
and
Anže Žitnik
5
Affiliations:
1
Software and Service Innovation, SINTEF Digital, Oslo, Norway
;
2
Research & Innovation, Atos, Seville, Spain
;
3
Department of Information Engineering, University of Pisa, Pisa, Italy
;
4
Trust-IT Services, Pisa, Italy
;
5
XLAB, Ljubljana, Slovenia
Keyword(s):
Cyber Range, Cybersecurity, Cyber-risk Models, Training Scenario, Exercise, Evaluation, Real-time, White Team, Green Team, Blue Team, Red Team.
Abstract:
There is an urgent need for highly skilled cybersecurity professionals, and at the same time there is an awareness gap and lack of integrated training modules on cybersecurity related aspects on all school levels. In order to address this need and bridge the awareness gap, we propose a method to train and evaluate the cybersecurity skills of participants in cyber ranges based on cyber-risk models. Our method consists of five steps: create cyber-risk model, identify risk treatments, setup training scenario, run training scenario, and evaluate the performance of participants. The target users of our method are the White Team and Green Team who typically design and execute training scenarios in cyber ranges. The output of our method, however, is an evaluation report for the Blue Team and Red Team participants being trained in the cyber range. We have applied our method in three large scale pilots from academia, transport, and energy. Our initial results indicate that the method is easy
to use and comprehensible for training scenario developers (White/Green Team), develops cyber-risk models that facilitate real-time evaluation of participants in training scenarios, and produces useful feedback to the participants (Blue/Red Team) in terms of strengths and weaknesses regarding cybersecurity skills.
(More)