Is the teaching of cyber-attacks in schools currently substantial enough to mitigate attacks in companies in the future?

I am a third year student studying digital forensics, I am currently undergoing my third year project. This survey is in support of my dissertation, it aims to reflect the current understanding of cyber attacks and threats.

Aim of Dissertation:

To investigate the current provision of cyber-security education in schools to evaluate the appropriateness and improve awareness of cyber-threats and mitigating strategies.

· Please answer the following questions honestly.

· Please do not write down any personal or confidential details about yourself or anyone else.

· In the written answers please provide as much detail as possible.

· Ethics form is available.

Question Title

* 1. Are you answering this questionnaire for yourself or on behalf of someone else?

Myself

Someone else

If you are answering on behalf of someone else please answer all following questions from their perspective.

Question Title

* 2. What is your age range?

Under 18

18-20

21-24

25-30

31-39

40-49

50-59

60+

Question Title

* 3. What is your highest level of education?

Primary School

High School

6th Form/ College

Undergraduate

Post Graduate

Masters

PhD

Question Title

* 4. Do you work in an IT specialised field/ Do you study an IT specialised course?

Yes

Question Title

* 5. If the answer to question 4 is 'yes' please enter career/ course title:

Question Title

* 6. If you are studying or working a role that requires any computer use, does your establishment provide any IT/ computer training? (Basic training on how to use a computer)

Yes

Question Title

* 7. If the answer to question 6 is 'yes' please provide an example:

Question Title

* 8. If you are studying or working a role that requires any computer use, does your establishment provide cyber security awareness training? (How to spot vulnerabilities or possible cyber attacks)

Yes

Question Title

* 9. If the answer to question 8 is 'yes' please provide an example:

Question Title

* 10. Based on the scoring below, how would you rate your understanding of cyber-attacks based on your schools teachings?

Fully understand - aware of all cyber-attacks, how they occur, vulnerabilities that could cause them and how to mitigate them.

Somewhat understand - have heard of some cyber-attacks that have happened, unsure of why they happen and what causes them.

No understanding - dont know what a cyber attack is or how it happens.

Question Title

* 11. How would you rate your current/ past teachings of cyber-security and cyber-attacks in school?

Compulsory timetabled lessons in IT that detailed cyber incident and attacks

Regular lessons that discussed cyber incidents and attacks

Occasional sessions that briefly mentioned cyber-attacks and threats

Never

Question Title

* 12. Do you have any IT related hobbies such as gaming/programming/etc...

Yes

Question Title

* 13. If the answer to question 12 was 'yes', please give examples:

Question Title

* 14. Have you ever undertaken your own self-teaching/research into cyber attacks?

Yes

Question Title

* 15. If the answer to question 14 is 'yes', please specify what you used:

Google search

Government websites

YouTube videos

Took a course

Books/Library

Other

Question Title

* 16. If the answer to question 14 is 'yes', please specify how long you spent looking in to cyber attacks:

Less than a day

Less than a week

Less than a month

A year

More than one year

Question Title

* 17. If the answer to question 14 is 'yes', please explain how you think self-teaching has aided your understanding of cyber attacks and use of computers/phones?

Question Title

* 18. If the answer to question 14 is 'yes' please explain how you think your self-teaching compared to your teachings in school?

Question Title

* 19. Would you consider paying for a course to increase your knowledge of cyber security?

Yes

Question Title

* 20. Have you ever fallen victim to a cyber-attack?

Yes

Question Title

* 21. If your answer to question 20 was 'yes', please note what type of attack took place, if you are unsure of the name please give a brief description:

Question Title

* 22. If your answer to question 20 was 'yes', do you think if you had more awareness and knowledge of cyber attacks could it have prevented this attack?

Yes

Question Title

* 23. Please select one of the following statements based on how you feel about teaching cyber security in schools:

Necessary - it is important to increase knowledge and vigilance of cyber attacks.

No preference - it doesn't matter if it is taught or not.

Unnecessary - real world teachings would be more beneficial.

Question Title

* 24. How do you currently protect your digital devices (mobiles/ laptops/ computers/tablets)

Spyware

Anti-virus software

Firewalls

Passwords

Multifactor authentication

None, I take no precautions

Other

Question Title

* 25. If you selected any options from question 24, do you fully understand their functions or have you implemented them as a recommendation?

Question Title

* 26. If you do use security precautions on your devices, how often do you update them?

Regularly

Never

I don't know

Its automated by software

When I remember

Other

Question Title

* 27. Do you know what a phishing email is?

Yes

Question Title

* 28. Have you ever received a phishing email?

Yes

I don't know

Question Title

* 29. If the answer to question 28 is 'yes', how did you approach receiving this email?

Filter all emails, trusted ones go to my inbox and others to my junk.

If I dont recognise the email sender or subject line, I delete the email immediately.

I open all emails to see their content and links to see if they verified.

Question Title

* 30. If there are 25 teaching hours a week in schools, how many hours should be dedicated to teaching cyber security and IT?

None

1 hour

2 hours

3 hours

4 hours

5 hours

More than 5 hours