REDucing the CYBERsecurity Management Skills Gap in SMEs Erasmus Project

General information for the REDucing the CYBERsecurity Management Skills Gap in SMEs Erasmus Project

July 7, 2020 12:00 am

0

1

Project Title

REDucing the CYBERsecurity Management Skills Gap in SMEs

Project Key Action

This project related with these key action: Cooperation for innovation and the exchange of good practices

Project Action Type

This project related with this action type : Strategic Partnerships for vocational education and training

Project Call Year

This project’s Call Year is 2018

Project Topics

This project is related with these Project Topics: New innovative curricula/educational methods/development of training courses; Overcoming skills mismatches (basic/transversal); ICT – new technologies – digital competences

Project Summary

As society becomes more technically advanced, cyber-attacks are becoming an increasingly common type of crime. Also direct attackers are becoming more and more difficult to identify, and the price of the crime is much higher, it is not only information that criminals can exchange for a currency, cryptocurrency or even a commodity, in this case, companies also threaten to damage their reputation.
Large companies have identified these potential risks to prevent or mitigate attacks and their consequences, they have a separate department and a budget allocated for that.
At the same time small and medium size enterprises are only now beginning to realize the seriousness of these attacks. However, they still believe that their company is not really valuable in the eyes of criminals and that the chances of becoming a victim of this crime are quite low.
And here they are mistaken – SMEs can become an indirect victim of an attack, they can be used as a tool for a larger scale crime. The aim of this project is not only to remind companies of this, but also to offer a free opportunity to explore valuable resources that would increase their awareness, insight and raise or develop new competencies in cybersecurity.
At the beginning of the project a survey was developed and conducted in order to better understand the direct target group of the project, their competences and the protective measures implemented.
During the project, the partners together analyzed cyber security risks and activities/job responsibilities for their management. Defined 3 job roles and selected 1, which was the most important one (Cyber security risk manager), determining the necessary levels of competencies required, afterwards aligned them to EQF and ECVET levels, thus developing a competency map.
Developed a Training methodology which defines tools and methods to implement the project training process in order to guide trainers, VET organisations and stakeholders in the implementation of the training material in SMEs interested in cybersecurity risk management issues. This methodology describes the different tools created within the project, the didactic principles and the lessons learnt for the future implementation of similar training courses. Also a Testing methodology was developed, which describes the methodology to be used to carry out the testing phases of the project outputs, from the very beginning to the overall evaluation report.
The developed training program consists of 6 training modules, which include reading parts (texts), presentations, videos, interactive videos, webpages, self-assessment gameful quizzes and interactive material. The Training program is created for individual, remote learning online. However, it can be also easily adopted for classroom training. All developed materials are available in the local languages of the partner countries.
After the development of almost all outputs the joint staff training followed. The main task was to revise developed training materials, to agree on the necessary improvements, as well to agree on the SMEs and VET pilot training format and prepare trainers as the following pilot training had to be done fully online. This joint staff training took more time as planned, because shortly before this event all borders under the influence of COVID-19 were closed and this measure had to be done online.
Another difficulty faced by the partners was the accreditation of the program. When reviewing the laws and regulations of each country related to the accreditation of the program, it was clear that it was not possible to be carried out in any of the countries. The partners agreed on the following assessment criteria and the type of certification:
1. The participant, after completing the training and passing the final test, can receive a badge within the training module, confirming that their acquired competency level is at least at 70%.
2. After the completion of the entire program and the accumulation of all 6 badges, the participant can receive a Certificate of Completion for the whole training program, including an attachment describing the program and the acquired knowledge.
Despite the fact that all training materials are freely available, in order to receive badges and the certificate at the end the participant will have to register on the training platform first.
As all partners felt the pressure of COVID-19, the main task was to prepare the training materials and upload them on the training platform as fast as possible, afterwards provide the pilot trainings and improve the training materials. Due to the complexity of the surrounding conditions, the implementation of these remaining activities took a longer time than originally planned in the beginning of the project. It was not possible to smoothly organize the pilot training groups, practically it was necessary to address each participant in the pilot training individually so that she/he could be persuaded and retained for pilot training. Since initial public communication did not provide results, partners agreed to take a radical step – address existing and former clients to involve them in the training. As the training period was extended there was a need to extend the project as well. The training materials were gradually improved during these pilot trainings.

Project Website

http://redcybersg.c1.biz/

EU Grant (Eur)

Funding of the project from EU: 229096,5 Eur

Project Coordinator

Baltijas Datoru akademija & Country: LV

Project Partners

ANKARA HACI BAYRAM VELI UNIVERSITESI
UNIVERSITET PO BIBLIOTEKOZNANIE I INFORMACIONNI TEHNOLOGII
ITIS “E. Mattei”
MUGLA SITKI KOCMAN UNIVERSITY
VENTSPILS AUGSTSKOLA
Training 2000 psc

admin

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.