Mr Giddeon Angafor

My professional career began in the Education sector where I initially worked as a teacher at 11-18 age ranges after which I retrained and moved to IT and worked within the private sector where I worked first as a Software Tester, then Principal Software Analyst and later QA and Security Manager before joining the public sector as IT/Cyber Security Analyst.

I returned to university as a part-time student while working as QA and Security Manager and obtained an MSc (with distinction) in Security Management. My research and dissertation concentrated on Cybercrime, Information Security and Risk Management. 

My MSc study and the recognition that I can contribute to future research provided the motivation for this PhD research

Cyber Technology Institute (CTI)

1. Game‐based learning: A review of tabletop exercises for cybersecurity incident response training
2. Bridging the Cyber Security Skills Gap: Using Tabletop Exercises to Solve the CSSG Crisis

Serious games (SGs) for cyber security, incident response training, (IRT). Collaborative tabletop exercises for incident response training and awareness. Incident response process improvement.

• Bachelor of Philosophy, B.Phil. (Hons) Urbaniana Pontifical University, Rome - Italy.
• PGCE with Qualified Teachers Status (QTS) Southampton University
• MSc Security Management (with Distinction) Institute of Criminal Justice Studies (ICJS), Portsmouth University.
• IISP professional membership.

My research is partly sponsored by my employer, Thames Valley Police (TVP).

Joint Conference on Serious Games 2020 (JCSG2020)

Title

Serious Games Education: Tabletop Exercises (TTXs) for Cyber Incident Response Training.

Abstract

Recent reports of high-profile breaches like the WannaCry ransomware attack in 2017 are clear evidence of the rapidly evolving cyber security threat landscape and the ability of cyber criminals to take down individuals and organisations easily. It is also an indication that few industries are capable to sustain these challenges due to a shortage in the essential specialist skills needed in the cyber security industry. It also puts into perspective the urgent need to train and nurture new graduates in the minimum skills and aptitudes required to succeed in a cyber security profession). This study investigated the current cyber security skills gap (CSSG), noting that cyber security skills are high in demand, yet short in supply, with employers facing problems attracting enough skilled personnel who have the right minimum required skills needed to be successful as a cyber security professional. It found that while there are some attempts to address this through education and training, many recruiting managers still hold that many graduates coming into the profession lack the essential skills, with many focused only on mastering practical skills while ignoring critical soft skills which are very important in today’s cyber security industry. In order to find some solutions to the CSSG the research examined tabletop training exercises (TTXs), especially their ability to nurture and enhance skills like those highlighted as important for a successful cyber security professional. It established that TTXs can help bridge some of the cyber security skills gaps in several ways. They can teach key skills like problem-solving, communication and teamwork. They can also help provide an understanding of business processes thereby enabling security personnel like cyber security incident teams (CSIRTs) to conduct their daily activities unperturbed.

Dr Iryna Yevseyeva and Dr Leandros Maglaras