Cybersecurity Competencies in Converged Technology Environments: Skill Requirements for Industry Professionals
Description
Full text not available
Abstract
This thesis explores the impact of Converged Technology (CT) on cybersecurity competencies, focusing on a Norwegian manufacturing company that has previously faced significant cybersecurity challenges. Through qualitative research involving interviews with IT Support professionals, Control Systems Engineers, OT Technicians, and Cybersecurity Managers, the study investigates how cybersecurity concerns influence competency requirements at the intersection of Information Technology (IT) and Operational Technology (OT). Additionally, the research examines how organizations prepare personnel to handle these challenges.
Findings indicate a critical need for enhanced cybersecurity competencies among IT and OT professionals. Effective cybersecurity management in CT environments requires improved collaboration and communication between these teams, emphasizing integrated skill sets and mutual understanding of both domains. Hands-on, role-specific training programs that incorporate cybersecurity awareness into daily operations and organizational culture are essential.
Sociotechnical Systems (STS) theory was applied to explore the necessity for both in-role and extra-role cybersecurity competencies. This approach provided insights into designing systems that integrate human and technical elements, enhancing cybersecurity practices. The study underscores the importance of embedding cybersecurity awareness into daily routines, fostering a culture where safety and security are collective responsibilities.
This thesis contributes to the theoretical and practical understanding of cybersecurity in Industry 4.0, offering a strategic framework for developing competencies and training programs tailored to industry professionals’ needs. The research suggests that organizations need to break down traditional silos between IT and OT teams to implement effective cybersecurity. Additionally, integrating human and technical elements helps organizations develop more resilient cybersecurity frameworks that adapt to the dynamic nature of Industry 4.0 environments. Future research should explore perspectives from individuals working with data generated by OT systems but lacking direct involvement in operational aspects, and conduct comparative analyses between organizations with different levels of cybersecurity implementation.
Keywords: Cybersecurity, Converged Technology, Industry 4.0, Informational Technology, IT, Operational Technology, OT, Sociotechnical Systems Theory.