The rapid evolution of communication technologies, advances in the IT field, together with the expanding presence of online activities in both personal and professional life and the recent breakthroughs in artificial intelligence raise important questions about how society adapts to and integrates these innovations. All these elements, combined with factors inherent to software development processes and human behaviour, create multiple vulnerabilities within the applications and technologies we rely on and use every day. Such weaknesses can be exploited by malicious actors, often driven by financial motivations or even related to cyberwarfare. Cybersecurity plays a vital role at both individual and organizational levels, as it safeguards data, privacy, and reputation, prevents unauthorized access and financial losses, ensures system integrity and trust and ultimately contributes to maintaining personal, organizational and even national security. Cybersecurity education is not just a requirement but an imperative action that must be widely adopted to meet the increasing demand for protection and to close the existing knowledge gap across society.
The need for cybersecurity education is a continuous and evolving one. On the one hand, there is a pressing demand for educating technical specialists capable of fighting cyber threats, developing cybersecurity solutions and further disseminating cybersecurity knowledge within the organizations where they operate. In addition, there is a strong need for sustained research efforts and dedicated funding in this area. Organized crime groups and state-sponsored entities generate profits amounting to tens or hundreds of millions of euros through cyberattacks, and consequently, their investments in developing sophisticated malware are substantial. Therefore, both public and private funded initiatives are essential to advance and strengthen this field. However, the mere development of technical experts does not, by itself, solve the broader challenges of cybersecurity. While the added value contributed by these professionals is unquestionable, a significant issue remains: the lack of cybersecurity awareness and education among the wider, non-technical population. In high risk or attack scenarios, cybersecurity specialists are generally able to protect themselves, but many other social groups are not equipped with the knowledge to do so. For this reason, cybersecurity education must be approached along three complementary dimensions:
-Technical dimension - As mentioned earlier, this involves the academic training of cybersecurity specialists through bachelor’s, master’s, and doctoral programmes in this field;
- Professional dimension - Cybersecurity education must also target non-technical business users who may become victims of, or unwitting vectors for cyberattacks or malware propagation. Examples of such roles include, but are not limited to, front desk and office staff, assistant managers, accounting personnel, lawyers, decision-makers, and entrepreneurs;
- Age-based dimension - Cybersecurity awareness should be fostered across all age groups, from primary school where children should learn which personal information must not be shared online or how to recognize cyberbullying, to older adults and retirees who often constitute some of the most vulnerable segments of society in regard to cybersecurity threats.
A significant challenge faced not only by SMEs, but also by public institutions in Romania and in the region is the lack of sufficient and adequately trained personnel in cybersecurity. Awareness of cybersecurity needs often arises only after a security incident occurs, like realizing the need for insurance only after an accident happened. Decision makers and institutional leaders frequently underestimate or neglect the importance of cybersecurity. In such organisations, most of the time, all IT related responsibilities are assigned to a single "IT person"; who may lack the time or the necessary cybersecurity expertise. Moreover, there is often limited understanding of relevant legislation, compliance requirements, risk management processes and the importance of conducting regular security audits. The context within Eastern Europe region further amplifies these challenges, as numerous public institutions, SMEs or critical infrastructure operators in the region are targeted by cyberattacks of Eastern origin. Additionally, many of these entities lack a mature cybersecurity culture and the organizational discipline that characterizes large corporations or multinational companies. To address these gaps, SMEs and public institutions must allocate dedicated budgets and implement continuous staff training programs in the area of cybersecurity. Given their dual role as educational pillars and active contributors to societal development, universities have a natural responsibility to participate in this process by offering specialized courses and professional development programmes aimed at strengthening cybersecurity capabilities across all sectors.
In recent years, as the largest and most prestigious university in Romania, Babeș-Bolyai University (UBB) of Cluj-Napoca, has actively been engaged in several initiatives and partnership programmes, funded or co-funded by the European Union, focused on cybersecurity education and capacity building. Through these projects, the university has contributed to the creation and delivery of specialized courses and training programmes addressing cybersecurity needs in both public and private sectors. Some of the most relevant initiatives include:
- The TDIH project - a digital innovation hub designed to provide a comprehensive range of digital transformation and innovation services for SMEs and public sector institutions. As the project approaches completion, one of UBB's primary roles has been to offer cybersecurity expertise and support to such organizations, helping them strengthen their digital resilience.
- The SPECTRO Project - a European initiative aimed at developing and implementing master's programmes in the fields of cybersecurity and robotics, as well as standalone self-training modules in cybersecurity, robotics and in innovation and entrepreneurship (I&E). Through this project, UBB contributes to the advancement of cybersecurity education and interdisciplinary collaboration at the European level.
- The CYCERONE Project - the current and the latest initiative in which UBB is involved, designed to help close the cybersecurity skills gap in Europe. Bringing together 15 partners from 10 countries, the project focuses on delivering cybersecurity training programs tailored particularly for SMEs and public sector institutions, thereby adding significant value to the European digital ecosystem.
Everyone can play a role in strengthening cybersecurity resilience. If you are a decision maker or an organizational leader, acknowledge that cybersecurity is not optional, but mandatory. Allocate dedicated budgets, develop clear strategies for cybersecurity and ensure that employees have access to relevant training programs to enhance their awareness and preparedness. If you are a professional in the field it’s of upmost importance to participate in cybersecurity education both within your organization, by sharing knowledge and best practices horizontally across teams, and in your personal life, by helping friends, family and relatives who may be less technically skilled in protecting themselves online. If you are a student, consider specializing in cybersecurity and becoming part of the next generation of experts who will shape a safer digital future. Last but not least, if you are a simple reader of this material, remember that even small actions, such as sharing verified information, raising awareness or supporting educational initiatives can have a butterfly effect that ultimately makes a real difference in the collective effort to strengthen cybersecurity.
Want to stay informed about the latest in AI and cybersecurity? Subscribe to our newsletter to receive updates on free training opportunities, industry insights, and more. Don't miss out on the chance to upskill your team and stay ahead in the digital age!
