Cybersecurity “shouldn’t be seen as an added layer, but as a natural reflex”

Dr. Wided Guedria, training manager at the Digital Learning Hub, shares her views on the sector’s future prospects as part of the “Cybersecurity Resilience in a Complex World” roundtable organised by the Paperjam Club on Tuesday 29 April 2025 at Proximus House.

You highlight the importance of human skills in cybersecurity. What do you think are the main obstacles to training and raising awareness among teams, and how can they be effectively overcome?

: One of the first obstacles is often cultural. Many people still see cybersecurity as a purely technical subject, reserved for experts or the IT department. As a result, employees don’t feel concerned, even though in reality, a large portion of incidents is linked to human error. There is also a lack of time and resources: raising awareness sometimes takes a back seat to other priorities considered more urgent.

To change this, we need to rethink our approach to cybersecurity: It shouldn’t be seen as an added layer, but as a natural reflex. This requires concrete actions: short, targeted, interactive training integrated into the daily professional routine. Teams also need to be made aware through fun or immersive formats (role-playing, attack simulations, digital escape games) that encourage memorisation and engagement.

At the Digital Learning Hub, we focus on concrete and immersive formats with interactive content adapted to the realities of different professions. The goal is to make cybersecurity tangible, accessible and, above all, useful for everyday professional life. It’s not just about knowing, but about knowing how to react.

Many companies still perceive cybersecurity as a technical constraint rather than a culture to be integrated. How can organisations better anchor cybersecurity in their values and daily practices?

I believe the key is to change the perspective. Cybersecurity should no longer be seen as a hindrance or a cost but as a factor of trust, competitiveness and resilience. A company that invests in digital security sends a strong message to its partners, clients and employees.

To achieve this, it is essential for leaders to set the example. When initiated by leadership, cybersecurity gradually becomes a natural component of company culture. This involves integrating cybersecurity into business processes, training plans, and also making it a real part of daily practices.

The Digital Learning Hub supports this transition by offering training programs co-developed with businesses, focused on job-specific usage. By training all profiles--from employees to managers--we foster the emergence of a shared culture where everyone becomes an actor in digital security. It is by normalising the topic, making it visible and valued, that cybersecurity can take root sustainably.

Finally, adopting a supportive approach is equally essential: allowing employees to raise an alert without fear, valuing good practices and, most importantly, considering that crisis management is first and foremost a human adventure. A resilient company is one where everyone dares to report an anomaly without fear of punishment.

In a context where cyber threats evolve rapidly, how can companies ensure that their training programmes remain relevant and effective in the long term?

Indeed, threats are constantly evolving, especially as artificial intelligence plays an increasing role in this landscape. It can be used to automate certain attacks, but it also significantly strengthens detection and defence tools. It is both an offensive and defensive lever, which must be taken into account in training programs. For companies, this requires continuous adaptation to anticipate threats and respond with agility. Training plays a key role here: it must evolve at the same pace as the risks, integrating new technological challenges, relying on active monitoring and regular feedback from the field, and preparing teams to face increasingly complex situations.

This is precisely the approach we advocate at the Digital Learning Hub. We co-develop modular training with companies and field experts, and we adapt it based on needs, learner feedback and technological developments. This direct link to operational reality is key to staying aligned with current challenges.

Varying formats is also an important lever: combining e-learning, in-person sessions, practical workshops, simulations, or serious games helps address all profiles and maintain engagement. And above all, offering multiple levels allows for gradual skill development, tailored to each individual, from beginner to advanced profile.

The challenge is to move from a one-time training approach to a true cybersecurity culture that is alive and integrated into the daily lives of teams.