IEEE Access (Jan 2024)
Optimal Job Role Allocation for Compliance With NCA-ECC Controls Using the Saudi Cybersecurity Workforce Framework
Abstract
In today’s world of complex cybersecurity threats, it is crucial for organizations to follow strong security frameworks. This research introduces a new way to combine the National Cybersecurity Authority’s Essential Cybersecurity Controls with the Saudi Cybersecurity Workforce Framework. Our goal is to connect regulated cybersecurity controls with practical workforce deployment. We use a systematic process to match tasks in the Saudi Cybersecurity Workforce Framework with the controls required by the National Cybersecurity Authority. This alignment helps organizations comply with these controls while making good use of their cybersecurity workforce. A key part of our work is creating an optimization model that identifies the best job roles needed under the Saudi Cybersecurity Workforce Framework to fully meet the Essential Cybersecurity Controls set by the National Cybersecurity Authority. By using optimization algorithms, our model offers a cost-effective and efficient way for organizations to comply with regulations. The findings show that certain job roles in the Saudi Cybersecurity Workforce Framework are crucial for covering many Essential Cybersecurity Controls, highlighting their strategic importance in cybersecurity operations. This study lays the groundwork for future research in cybersecurity workforce optimization and offers a framework for other organizations to adapt their cybersecurity strategies to meet specific regulatory requirements.
Keywords
