Despite the high demand for cybersecurity professionals, there are very few guidelines standardizing cybersecurity education. The Association for Computer Machinery organized a workshop to discuss guidelines on cybersecurity education, due to the close to $400 billion in damages caused by cyberattacks in 2011. The board recognized that during a four-year undergraduate degree, it is quite difficult to take enough coursework to gain expertise in the cybersecurity space, so most education must be done in rigorous graduate-level courses. Studying only theoretical concepts is inadequate, so much of graduate education should be done with practical examples and/or internships. Cybersecurity education must be multidisciplinary, as the challenges that arise in this field are ever-changing. Schools should emphasize deeply technical graduate courses that complement government, business, and industry experience that the school should work on providing connections toward.
