Unlocking Cybersecurity: A Game-Changing Framework for Training and Awareness—A Systematic Review

Abstract

Recent advancements in computer science have led to the automation of many business processes. However, this increased automation has also escalated cyber threats and attacks alarmingly, as most data breaches are attributed to human errors, which are critical in these incidents. The primary cause is a lack of cybersecurity awareness and insufficient hands-on experience in real-world scenarios. Serious game frameworks offer a promising solution by surpassing traditional learning methods and addressing cybersecurity education’s complex and evolving nature. This research employs the Preferred Reporting Items for Systematic reviews and Meta-Analyses (PRISMA) technique to systematically analyze various studies, using a snowballing method to select relevant resources. The study conducted a systematic literature review of 68 selected studies within the domains of serious games and cybersecurity training, aiming at evaluating the contributions of other researchers. The review examined different frameworks, tools, technologies, methodologies, and serious games developed for cybersecurity training over the past 5 years. The key findings demonstrate that serious games can effectively engage learners, facilitating knowledge sharing within realistic cybersecurity environments. Additionally, the review assessed the methodologies used to evaluate these serious games across different educational settings. Finally, the study underscores the need for a structured classification of research in the cybersecurity domain, leveraging serious game frameworks along with its taxonomy. This classification would provide a clear direction for future research, building on the evaluation of techniques from previous studies.