Cyber-Security Training Evaluation Metrics

TitleCyber-Security Training Evaluation Metrics
Publication TypeConference Paper
Year of Publication2021
AuthorsKoutsouris N, Vassilakis C, Kolokotronis N
Conference NameProceedings of the 2021 IEEE International Conference on Cyber Security and Resilience
KeywordsCyber-ranges, Cyber-security training, Evaluation, Gamification, Scoring

Cyber-security training has evolved into an imperative need, aiming to provide cyber-security professionals with the knowledge and skills required to confront cyber-attacks that are increasing in number and sophistication. Training activities are typically associated with evaluation means, aimed to assess the extent to which the trainee has acquired the knowledge and skills whose development is targeted by the training programme, while cyber-security awareness and skill level evaluation means may be used to support additional security-related aspects of organizations. In this paper, we review trainee performance assessment metrics in cyber-security training, aiming to assist designers of cyber-security training activities to identify the mostprominent trainee performance assessment means for their training programmes, while additional research directions involving cyber-security training evaluation metrics are also identified.