Cybersecurity Across Disciplines: Why Every Profession Needs Cyber Capability

Cybersecurity Across Disciplines: Why Every Profession Needs Cyber Capability

Cybersecurity Across Disciplines: Why Every Profession Needs Cyber Capability

https://australiancybersecuritymagazine.com.au/cybersecurity-across-disciplines-why-every-profession-needs-cyber-capability/

Publish Date: 2026-07-15 23:25:00

Source Domain: australiancybersecuritymagazine.com.au

By Faraz Khan

During my international Fellowship on cybersecurity education, one lesson became increasingly clear: some of the most important cybersecurity decisions are made by people who do not work in cybersecurity. A health worker handles patient information. A community-services employee manages digital case records. A hospitality worker processes customer data. A manufacturing employee uses connected equipment.

None of these workers is a cybersecurity specialist, yet each decision can increase or reduce organisational cyber risk.

This is why cybersecurity can no longer be treated only as an ICT subject or the responsibility of a specialist security team. It is now part of everyday work across almost every digitally enabled industry.

The current gap

Australia alread has cybersecurity qualifications, awareness programs and industry resources. The problem is that cybersecurity is not consistently embedded across non-ICT vocational qualifications.

In some qualifications, cyber units appear only as electives. This means two learners completing the same qualification may receive very different preparation, even when both will handle personal information, use digital platforms or manage workplace risk.

In other cases, cybersecurity is reduced to generic advice: use strong authentication, apply updates and recognise phishing attempts. These messages are useful, but they do not show workers how cyber risk appears in their own roles.

There is also an over-reliance on written knowledge questions. Knowing the correct answer in an assessment is not the same as recognising a suspicious request, protecting sensitive information or escalating an incident under workplace pressure.

Australia therefore needs to distinguish between three levels of capability: specialist cybersecurity expertise, foundational cyber awareness and safe digital behaviour, and occupation-specific cybersecurity responsibility. Not…

Source