Advertisement

Training Cyber Security Exercise Facilitator: Behavior Modeling Based on Human Error

Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 782)

Abstract

Exercise facilitators are essential in the field of cybersecurity training. They provide useful insights to the exercise participants while guiding the group discussion. During the exercise conducted at the Nagoya Institute of Technology, the variation of exercise deliverables was observed due to the un-even facilitation. In this paper, facilitation error was studied by modeling the error behavior as the error of omission and commission. The quality of the facilitation was evaluated based on the error occurrence.

Keywords

Cyber security Tabletop exercise Facilitation Human error Omission error Commission error 

Notes

Acknowledgments

This research is partially supported by the Ministry of Education, Science, Sports and Culture, Grant-in-Aid for Scientific Research (A), No. 16H01837 (2016) and Council for Science, Technology and Innovation (CSTI), Cross-ministerial Strategic Innovation Promotion Program (SIP), “Cyber-Security for Critical Infrastructure” (Funding Agency: NEDO), however, all remaining errors are attributable to the authors.

References

  1. 1.
    LaPiedra, J.: The Information Security Process Prevention. Detection and Response, Global Information Assurance Certification Paper, GIAC directory of certified professionals (2011)Google Scholar
  2. 2.
    Critical Infrastructure Cybersecurity.: Framework for Improving Critical Infrastructure Cybersecurity. Framework 1, 11 (2014)Google Scholar
  3. 3.
    Ota, Y., Aoyama, T., Koshijima, I.: Cyber incident exercise for safety protection in critical infrastructure. In: 13th Global Congress on Process Safety, San Antonio, USA (2017)Google Scholar
  4. 4.
    Aoyama, T., Watanabe, K., Koshijima, I., Hashimoto, Y.: Developing a cyber incident communication management exercise for CI stakeholders. In: 11th International Conference on Critical Information Infrastructures Security, Paris, France, pp. 13–24 (2016)CrossRefGoogle Scholar
  5. 5.
    Ota, Y., Aoyama, T., Davaadorj, N., Koshijima, I.: Cyber incident exercise for safety protection in critical infrastructure. Int. J. Saf. Secur. Eng. 8(2), 246–257 (2018)CrossRefGoogle Scholar
  6. 6.
    Hirai, H., Aoyama, T., Davaadorj, N., Koshijima, I.: Framework for Cyber Incident Response Training, Safety and Security Engineering VII, Rome, Italy, pp. 273–283 (2017)Google Scholar
  7. 7.
    “Facilitation.” Cambridge business English dictionary. https://dictionary.cambridge.org/dictionary/english/facilitation
  8. 8.
    Hmelo-Silver, C.E., Howard, S.B.: Goals and strategies of a problem-based learning facilitator. Interdisc. J. Prob. Based Learn. 1(1), 4 (2006)Google Scholar
  9. 9.
    Miranda, S.M., Robert, P.: Bostrom.: Meeting facilitation: process versus content interventions. J. Manag. Inf. Syst. 15(4), 89–114 (1999)CrossRefGoogle Scholar
  10. 10.
    Shirai, Y., Washio, A., Shimomura, T.: Role of Facilitators in Group Learning in Higher Education, pp. 109–118 (2012). (in Japanese)Google Scholar
  11. 11.
    Roger, S.: The Skilled Facilitator: A Comprehensive Resource for Consultants, Facilitators, Managers, Trainers, and Coaches (2002)Google Scholar
  12. 12.
    Hori, K.: Organizational change facilitator (2006). (Japanese) Toyo, KeizaiGoogle Scholar
  13. 13.
    Donald, V.M., Deborah, D.T.: Basics of Learning facilitation (2015). (Japanese) Kazuaki, K. translationGoogle Scholar
  14. 14.
    Boyd, J.R.: The essence of winning and losing. Unpublished Lecture Notes 12(23), 123–125 (1996)Google Scholar
  15. 15.
    Osinga, F.B.: Science, Strategy and War: The Strategic Theory of John Boyd. Routledge, Abingdon (2007)Google Scholar
  16. 16.
    James, R.: Human Error. Cambridge University Press, Cambridge (1990)Google Scholar
  17. 17.
    Swain, A.D.: Accident sequence evaluation program: human reliability analysis procedure. No. NUREG/CR-4772; SAND-86-1996. Sandia National Labs., Albuquerque, NM (USA); Nuclear Regulatory Commission, Washington, DC (USA). Office of Nuclear Regulatory Research (1987)Google Scholar
  18. 18.
    Nakamura, T.: Human error from psychological perspective, pp. 29–32 (2009). (in Japanese)Google Scholar
  19. 19.
    Isc2.org. Global Cybersecurity Workforce Shortage to Reach 1.8 Million as Threats Loom Larger and Stakes Rise Higher (2017). https://www.isc2.org/News-and-Events/Press-Room/Posts/2017/06/07/2017-06-07-Workforce-Shortage. Accessed 2 Mar 2018

Copyright information

© Springer International Publishing AG, part of Springer Nature 2019

Authors and Affiliations

  1. 1.Nagoya Institute of TechnologyNagoyaJapan

Personalised recommendations