Discussing the future of ICT security education (left-right): Harald Holt (Noroff), Reidar Grevskott (Project Manager), Arnt Aske (GCE NODE) and Otto Isaksen (Digin).

GCE NODE, Noroff University College and ICT cluster Digin are collaborating to develop an ICT security education customized for the industry.

“The goal is to establish a forefront education on ICT security; not merely a theoretical college-level course, but a practical approach. ICT security will always be about technology, but culture and human behavior are as important issues to address,” says Arnt Aske, Business Development Digitalization at GCE NODE.

TRUST AND CONTROL
As the modern society is ever more based on data and technology, it is vital to build trust in data and be able to control data.

“More and more machines and gadgets are being connected every day. The Internet of Things has significant potential for companies and industries, but we need to remember the risks associated with the fully connected world. We see constant attempts from individuals, organizations and nations to gain control of data. This calls for tightened security,” says Aske.

Immediate threats for the oil and gas industry are related to the supply chain, intellectual property, robots/automation and big data analysis.

“We could see attempts to interrupt our production, steal our new design, sabotage our rig or gain access to our sensitive data,” says Aske.

KNOWLEDGE IS A COUNTERMEASURE
As one countermeasure to the increasing number of attacks, partners GCE NODE, Noroff University College and Digin have received funds from Innovation Norway to develop a ICT security education pilot set to start this fall.

“Input from companies in GCE NODE and Digin, as well as from experts from The Norwegian Data Protection Authority (Datatilsynet), The Norwegian National Security Authority (NSM) and The Norwegian Communications Authority (Nkom) has provided us with an understanding of the industry’s needs. On these valuable inputs we have now built a curriculum,” says Aske.

Courses likely to be offered in the 10 ECT educational program:

  1. Developing an ICT Culture
  2. Security Issues of Evolving Technologies
  3. Incident Preparedness and Response
  4. Risk and Threat
  5. Risk Countermeasures
  6. Security By Design (HW/SW)
  7. Frameworks and Controls
  8. Value and Supply Chain Security
  9. GDPR Overview
  10. GDPR In-Depth