Britain’s Cybersecurity Skills Gap

Uploaded on 2019-11-18 in JOBS-Training, FREE TO VIEW

Globally, there were an estimated 3 million unfilled cybersecurity vacancies at the end of 2018 and it has been predicted that there could be as many as 3.5 million unfilled cybersecurity roles in the UK alone by 2022. In Britain, the UK government has created the Initial National Cyber Security Skills Strategy with the intention of resolving the skills shortage, but it is going to need a concerted effort from everyone involved to reduce the skills gap. 

This skills gap in the UK is the result of a number of factors, such as the outpacing of new technologies creating a shortage in specialist skills, a disconnect between education and the industry and gender inequality. Each one of these issues will need to be addressed by the industry and educators if this ever-increasing skills gap is to be closed. 

Specialist Skills
Many recruiters and employers claim that positions stay vacant because many candidates lack the required level of experience and the specialist skills needed to perform the role. However, with more and more positions opening up and remaining vacant, the industry will need to address this skills shortage and the reasons behind it. 

As an industry, cybersecurity is both aided and hindered by the rapid pace that technology evolves. As new technology is developed and introduced into the world those working in cybersecurity are tasked with adapting to this new technology.
With new technologies emerging every day, the UK’s skills gap is unlikely to lessen without major efforts from both employers and educators. The need for specialist skills in the industry that relate to new technologies such as cloud computing is readily apparent. These new technologies come with security vulnerabilities that require specialized training and knowledge to address. 

However, many graduates lack the understanding or experience of these new technologies due to how new they are. This would suggest that there is a disconnect between the industry and education and that the objectives of the industry aren’t being fully met by education institutions. 

The Disconnect Between Education And Industry
At the time of writing, there are only 4 specific cybersecurity bachelor’s degrees taught in the UK that have been approved by the National Cyber Security Centre. In addition, cybersecurity is rarely chosen as a specialism by students until Master’s level, resulting in very few graduates leaving university with a strong understanding of cybersecurity. 

The most in-demand specialist skill currently in demand in the UK is penetration testing. However, despite being a vital and sought after skill in graduates, there is only one course that is listed on the UCAS website that makes any reference to penetration testing. To begin to close the skills gap, there needs to be improved communication and cooperation between education and the industry. 

Cybersecurity businesses will need to identify their own weaknesses and work together with education providers to enhance student’s understanding and interest in the most in-demand areas of cybersecurity to help to tackle the skills shortage. 

Professional Certifications
However, not all of the responsibility for the skills shortage lies with education providers. Employers that are struggling to fill roles requiring more advanced skills need to develop and train their own staff to progress their teams. With so many businesses struggling to fill specialist roles, internal training and up-skilling could be essential in tackling the skills shortage. 
There is a range of professional certificates that are able to provide cybersecurity professionals with a more comprehensive understanding of specialist areas. For example, the Certified Ethical Hacker (CEH) qualification familiarises staff with penetration testing methods. 

Gender Inequality And Diversity
Another commonly suggested way to tackle the skills gap is to open the cybersecurity industry up to women and other diverse applicants. Only 16% of cybersecurity students that graduated in 2017 were women and women professional in cybersecurity are paid on average 25% less than their male counterparts. If the cybersecurity industry wants to resolve this skills gap it will need to entice as many candidates as possible and make efforts to diversify their talent pool. 

Other STEM industries that have made efforts to tackle gender inequality, such as engineering, are already beginning to see improvements in their own skills gaps. In any industry, diversity is essential and helps to create a team from a range of backgrounds and experiences that can work together to problem-solve from a range of angles. 

With the UK facing such a dramatic shortage of skilled cybersecurity staff in a vital industry it is imperative that we work to expand the perception of what a cybersecurity professional looks and thinks like to make the role as open and attractive to as many people as possible. 

About the Author:
Dan Baker is a Content Writer that works with SecureTeam, a cybersecurity consultant that provides a range of cybersecurity solutions to small and medium businesses across the UK. 

You Might Also Read:

Employee Training Is Vital For Commercial Cybersecurity:

Closing The Skills Gap Starts At School:

 

« Google Challenged For Collecting American Health Data
Killer Robots For Export »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

SANS Institute

SANS Institute

SANS is the most trusted and by far the largest source for information security training and security certification in the world.

CloudSigma

CloudSigma

CloudSigma, a pure-cloud IaaS provider offers flexible and innovative cloud hosting solutions for companies of all sizes both in Europe and the US.

maCERT

maCERT

maCERT is the national Computer Emergency Response Team for Morocco.

Open Systems International (OSI)

Open Systems International (OSI)

Our innovative Operations Technology (OT) solutions are highly scalable and can be deployed by various utility companies to monitor, control and optimize their real-time operations.

Cimcor

Cimcor

Cimcor’s flagship software product, CimTrak, helps organizations to monitor and protect a wide range of physical, network and virtual IT assets in real-time.

SMiD Cloud

SMiD Cloud

SMiD encryption technology has been developed following the highest security practices to allow the data availability, integrity and confidentiality.

MER Group

MER Group

MER Group is a world-leading solutions provider specializing in Homeland Security (HLS), Cyber and Intelligence, Communication Infrastructure and Tactical Communication Systems.

Cyberhaven

Cyberhaven

Cyberhaven provides rapid enablement for GDPR and CCPA compliance, streamlined data security and modern risk management.

EMnify

EMnify

EMnify is a Software-as-a-Service (SaaS) company, revolutionizing cellular Internet of Things (IoT).

David Hayes-Export Controls

David Hayes-Export Controls

David Hayes-Export Controls provides assistance to companies affected by export controls or who are considering entering the market but are unsure of the commercial and regulatory implications.

Bitcrack

Bitcrack

Bitcrack Cyber Security helps your company understand and defend your threat landscape using our key experience and skills in cybersecurity, threat mitigation and risk.

Hong Kong Broadband Network (HKBN)

Hong Kong Broadband Network (HKBN)

HKBN are a leading integrated telecom and technology solutions provider that offers a comprehensive range of premier ICT services to both the enterprise and residential markets.

LogicGate

LogicGate

The LogicGate Risk Cloud™ is an agile GRC cloud solution that combines powerful functionality with intuitive design to enhance enterprise GRC programs.

Buchanan Technologies

Buchanan Technologies

Buchanan Technologies is a leading IT consulting and outsourcing services firm. Our methodology transforms everyday technology investments into streamlined, secure and scalable solutions.

PrimeSSL

PrimeSSL

PrimeSSL, a leading Certificate Authority (CA) backed by the trusted Sectigo Root, delivers affordable and user-friendly SSL/TLS certificate solutions.

VPNBlade

VPNBlade

VPNBlade is your go-to resource for expert reviews and advice on VPN services.