Relevant Cybersecurity: Curriculum Guidance for the South African Context

Brink, Robin; Ophoff, Jacques; Ruhwanya, Zainab

doi:10.1007/978-3-031-21076-1_1

Relevant Cybersecurity: Curriculum Guidance for the South African Context

Conference paper
First Online: 08 December 2022

75 Accesses

Part of the Communications in Computer and Information Science book series (CCIS,volume 1664)

Abstract

Cybersecurity is vital to most organisations, and it is important that Higher Education institutions ensure the relevance of degrees to meet industry needs. It is desirable to minimise any gap in the skills graduates obtain compared to what organisations expect when hiring a cybersecurity professional. This research examines the cybersecurity tasks, knowledge, and skills that are sought by South African organisations. Content analysis was used to compare job advertisements from five well-known online job portals with the knowledge areas, units, and topics from the Cybersecurity Curricula 2017. The results indicate that knowledge in organisational security is most needed, specifically relating to identifying and protecting organisations against risk. Some areas are shown to be less relevant in the sample of advertisements, such as component security. The results of the analysis can be used by Higher Education institutions, as well as other training providers, to ensure an industry-relevant cybersecurity curricula in the South African context. The research also demonstrates a replicable approach that can be used to ensure cybersecurity education-industry alignment in the future.

Keywords

Cybersecurity curricula
Knowledge areas
Content analysis
South Africa

This is a preview of subscription content, access via your institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 59.99; Price excludes VAT (USA)

Softcover Book: USD 74.99; Price excludes VAT (USA)

Learn about institutional subscriptions

References

Armstrong, K., Parmelee, M., Santifort, S., Burley, J., van Fleet, J.: Preparing tomorrow’s workforce for the fourth industrial revolution. Technical report, Deloitte Global and the Global Business Coalition for Education (2018). https://www2.deloitte.com/global/en/pages/about-deloitte/articles/gx-preparing-tomorrow-workforce-for-the-fourth-industrial-revolution.html
Burley, D., Lewis, A., Jr.: Cybersecurity curricula 2017 and Boeing: linking curricular guidance to professional practice. Computer 52(3), 29–37 (2019). https://doi.org/10.1109/MC.2018.2883567
CrossRef Google Scholar
Department of Higher Education and Training: Organising Framework for Occupations (2021). https://webapps.dhet.gov.za/OFORegister
Emmersen, T., Hatfield, J., Kosseff, J., Orr, S.: The USNA’s interdisciplinary approach to cybersecurity education. Computer 52(3), 48–57 (2019). https://doi.org/10.1109/MC.2018.2883605
CrossRef Google Scholar
Gcaza, N., von Solms, R.: A strategy for a cybersecurity culture: a South African perspective. Electron. J. Inf. Syst. Dev. Countries 80(1), 1–17 (2017). https://doi.org/10.1002/j.1681-4835.2017.tb00590.x
CrossRef Google Scholar
Haney, J., Lutters, W.: Skills and characteristics of successful cybersecurity advocates. In: Workshop on Security Information Workers, Symposium on Usable Privacy and Security (2017). https://www.usenix.org/conference/soups2017/workshop-program/wsiw2017/haney
Hudnall, M.: Educational and workforce cybersecurity frameworks: comparing, contrasting, and mapping. Computer 52(3), 18–28 (2019). https://doi.org/10.1109/MC.2018.2883334
CrossRef Google Scholar
Irons, A., Ophoff, J.: Aspects of digital forensics in South Africa. Interdisc. J. Inf. Knowl. Manag. 11(2014), 273–283 (2016). https://doi.org/10.28945/3576
CrossRef Google Scholar
Joint Task Force on Cybersecurity Education: Cybersecurity Curricula 2017: Curriculum Guidelines for Post-Secondary Degree Programs in Cybersecurity. Association for Computing Machinery, New York (2018). https://doi.org/10.1145/3184594
Jones, K., Namin, A., Armstrong, M.: The core cyber-defense knowledge, skills, and abilities that cybersecurity students should learn in school: results from interviews with cybersecurity professionals. ACM Trans. Comput. Educ. 18(3), 11:1–11:12 (2018). https://doi.org/10.1145/3152893
McGettrick, A.: Toward effective cybersecurity education. IEEE Secur. Priv. 11(6), 66–68 (2013). https://doi.org/10.1109/MSP.2013.155
CrossRef Google Scholar
Neuendorf, K.: The Content Analysis Guidebook. SAGE Publications Inc., Thousand Oaks (2017). https://doi.org/10.4135/9781071802878
CrossRef Google Scholar
van Niekerk, B.: An analysis of cyber-incidents in South Africa. African J. Inf. Commun. 20, 113–132 (2017). https://doi.org/10.23962/10539/23573
CrossRef Google Scholar
Parker, A., Brown, I.: Skills requirements for cyber security professionals: a content analysis of job descriptions in South Africa. In: Venter, H., Loock, M., Coetzee, M., Eloff, M., Eloff, J. (eds.) ISSA 2018. CCIS, vol. 973, pp. 176–192. Springer, Cham (2019). https://doi.org/10.1007/978-3-030-11407-7_13
CrossRef Google Scholar
Petersen, R., Santos, D., Wetzel, K., Smith, M., Witte, G.: Workforce Framework for Cybersecurity (NICE Framework). Technical report, NIST Special Publication (SP) 800–181 Rev. 1, National Institute of Standards and Technology (2020). https://doi.org/10.6028/NIST.SP.800-181r1
Potter, L., Vickers, G.: What skills do you need to work in cyber security? A look at the Australian market. In: Proceedings of the 2015 ACM SIGMIS Conference on Computers and People Research, pp. 67–72 (2015). https://doi.org/10.1145/2751957.2751967
Renaud, K., Ophoff, J.: A cyber situational awareness model to predict the implementation of cyber security controls and precautions by SMEs. Organ. Cybersecur. J. Pract. Process People 1(1), 24–46 (2021). https://doi.org/10.1108/OCJ-03-2021-0004
CrossRef Google Scholar
Scrimgeour, J.-M., Ophoff, J.: Lessons learned from an organizational information security awareness campaign. In: Drevin, L., Theocharidou, M. (eds.) WISE 2019. IAICT, vol. 557, pp. 129–142. Springer, Cham (2019). https://doi.org/10.1007/978-3-030-23451-5_10
CrossRef Google Scholar
SFIA Foundation: Skills Framework for the Information Age (SFIA 8) (2021). https://sfia-online.org/en
Taylor, E., Calitz, A.P.: The Use of industry advisory boards at higher education institutions in Southern Africa. In: Tait, B., Kroeze, J., Gruner, S. (eds.) SACLA 2019. CCIS, vol. 1136, pp. 244–259. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-35629-3_16
CrossRef Google Scholar

Download references

Author information

Authors and Affiliations

University of Cape Town, Cape Town, South Africa
Robin Brink, Jacques Ophoff & Zainab Ruhwanya
Abertay University, Dundee, UK
Jacques Ophoff

Authors

Robin Brink
View author publications
You can also search for this author in PubMed Google Scholar
Jacques Ophoff
View author publications
You can also search for this author in PubMed Google Scholar
Zainab Ruhwanya
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Jacques Ophoff .

Editor information

Editors and Affiliations

Stellenbosch University, Stellenbosch, South Africa
Richard J. Barnett
Stellenbosch University, Stellenbosch, South Africa
Daniel B. le Roux
Stellenbosch University, Stellenbosch, South Africa
Douglas A. Parry
Stellenbosch University, Stellenbosch, South Africa
Bruce W. Watson

Rights and permissions

Reprints and Permissions

Copyright information

About this paper

Cite this paper

Brink, R., Ophoff, J., Ruhwanya, Z. (2022). Relevant Cybersecurity: Curriculum Guidance for the South African Context. In: Barnett, R.J., le Roux, D.B., Parry, D.A., Watson, B.W. (eds) ICT Education. SACLA 2022. Communications in Computer and Information Science, vol 1664. Springer, Cham. https://doi.org/10.1007/978-3-031-21076-1_1

Download citation

DOI: https://doi.org/10.1007/978-3-031-21076-1_1
Published: 08 December 2022
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-21075-4
Online ISBN: 978-3-031-21076-1
eBook Packages: Computer ScienceComputer Science (R0)