Information SecurityThrough Gamification

Learning | Training | Improving

Marius Corici:Lazy entrepreneur (energy efficient):

Thinking a lot to do less, preserving energy, providing simplicity.

https://CTF365.com - Finalist Kaspersky Security Startup Challenge 2015

Wanna talk? Email: marius@ctf365.com

Skype: marius.coricihttps://www.linkedin.com/pub/marius-corici/12/73/73b

Source: http://www.juniperresearch.com/press/press-releases/iot-connected-devices-to-triple-to-38-bn-by-2020

IoT 38 Billion Devices by 2020

(In)Security Landscape

Information SecurityEmployment Landscape

Demand > Supply

-1.5M2017

http://www.csoonline.com/article/2922381/infosec-careers/confronting-the-widening-infosec-skills-gap.html https://www.isc2.org/uploadedFiles/%28ISC%292_Public_Content/2013%20Global%20Information%20Security%20Workforce%20Study%20Feb%202013.pdf

Employment ↑11.3%

“I know Information Security!”

● Security Training Companies

● CS Faculties

● Self – Taught

AreWe

Screwed?

Gamification

Gamification: ● Using game elements in non-game context.

Game ≠ Gaming ≠ Gamification

GAME

GAMING

GAMIFICATION{● Engagement

● Productivity● Learning● Employee Recruitment● Evaluation

Learning Through GamificationEducational, Entertaining, Challenging, Continuous Improvement, Community Driven, Hands On

Lecture

Reading

Audio/Visual

Demonstration

Discussion Group

Practice by Doing

Gamification

Teaching Others

5%

10%

20%

30%

50%

75%

80-90%

95%

Information SecurityTraining Hands-On

InformationSecurity

SecurityLab

Hands-On

Information Security is a journey not a destination

Information Security Through Gamification

Challenging, Entertaining, Community Driven

InformationSecurity

SecurityLab

Hands-On

Gamification

Badges, Ranks & Points

… To show user's expertise for different hacks and skills. XSS, SQLi, Crypto, Deface, TakeOver BruteForce, Sniffing, etc.

Gamification – Why?

Progress

Motivation

Social Interaction

Mastery

Gamification Benefits

● Improve Attendance● Improve Motivation● Improve Retention Rate● Increase Attainment● Speed up Learning Curve

Enterprise Gamification

2011: Gartner: Over 70 Percent of Global 2000 Organisations Will Have at Least One Gamified Application by 2014*

* http://www.gartner.com/newsroom/id/1844115 http://blogs.clicksoftware.com/index/top-25-best-examples-of-gamification-in-business/ http://www.yukaichou.com/gamification-examples/top-10-enterprise-gamification-cases-employees-productive/#.VgGXdd9_c3o

Designing Gamification

2012: GARTNER Says by 2014, 80 Percent of Current Gamified Applications Will Fail to Meet Business Objectives Primarily Due to Poor Design*

* http://www.gartner.com/newsroom/id/2251015

Player, Mission, Motivation, Mechanics, Challenge

https://CTF365.com

Getting your Infosec Certificate, makes you a Security Professional.

Keeping your hacking skills up to date, makes you an Expert.