DOI: https://doi.org/10.36719/2663-4619/117/138-144
Ramazan Eyyubov
Odlar Yurdu University
Doctor of philosophy in mathematics
https://orcid.org/0009-0003-0546-0188
eyyubov54@mail.ru
Kanan Jafarov
Odlar Yurdu University
Master student
https://orcid.org/0009-0005-64861488
ceferovkenan36@gmail.com
Role in Forming Defense Strategies in Cybersecurity
Abstract
The article analyzes the strengths and weaknesses of the human factor in cybersecurity. The possibilities of increasing employee security knowledge through training and simulation models are explored, and the experience of local companies in Azerbaijan is referenced. As a result, it is concluded that human factor-based approaches play an important role in cybersecurity strategies. This article analyzes the role of the human factor in cybersecurity and its development through effective training. The use of simulation-based training models-specifically MITRE ATT&CK and Lockheed Martin Cyber Kill Chain-to enhance employees’ technical and behavioral knowledge is explored. The statistical increase in phishing attacks, the approaches of local organizations (SOCAR, Azercell, etc.),and a practical plan for the phased implementation of training are presented. The article shows that cybersecurity can be strengthened with a more human-centric approach than a technological one.
Keywords: Human factors, cybersecurity, training, simulation, attack phases, Phishing, OPSEC