ADVANCING CYBERSECURITY EDUCATION ACROSS EDUCATIONAL LEVELS: STRATEGIES, IMPLEMENTATION, AND A MULTI-CRITERIA DECISION APPROACH FOR OPTIMAL PEDAGOGICAL SELECTION

Abstract

As digital technologies become intricately integrated into educational systems, cybersecurity has emerged as a significant concern for both students and staff. Educational institutions are increasingly vulnerable to threats such as phishing and online misinformation. These risks jeopardize not only the integrity of institutions but also the safety and privacy of learners. This paper advocates for the urgent incorporation of structured cybersecurity education across all educational levels. The study proposes a framework for the effective teaching of cybersecurity, structured into three principal dimensions: curriculum integration, experiential learning, and behavioural awareness campaigns. Each dimension is investigated using pedagogical techniques that range from age differentiated modules to simulation-based training, and visual campaigns. Furthermore, to systematically assess and select the most suitable teaching strategies for various educational settings, a multi-criteria decision-making (MCDM) approach is employed using the Technique for Order Preference by Similarity to Ideal Solution (TOPSIS). The model evaluates strategies against criteria such as effectiveness, engagement level, cost, scalability, and implementation feasibility. The TOPSIS analysis reveals that teacher-led trainings score highest across key criteria due to its efficiency and level of feasibility. This was followed by simulation-based training which enhances learner motivation, engagement, and long-term knowledge retention. Behavioural awareness campaigns also show promise in efficiency, engagement and cost. The findings highlight the importance of equipping teachers on effective teaching methods in fostering cybersecurity awareness and competence. The proposed TOPSIS-based model provides a practical and adaptable tool for educators, policymakers, and curriculum developers to make informed decisions about cybersecurity instruction.