Cyber-Workforce Shortage to Increase

Uploaded on 2017-03-03 in FREE TO VIEW, JOBS-Careers, NEWS-News Analysis

The serious talent shortage in the information security workforce shows no sign of waning:

The Center for Cyber Safety and Education says that employers must look to millennials to fill the projected 1.8 million positions that are estimated to be unfilled by 2022.

This is an increase of 20% from the 1.5 million worker shortfall forecast by the Center’s 2015 Global Information Security Workforce Study (GISWS).

“For years, we’ve known about the impending shortage of the information security workforce, as evidenced by our study year-over-year,” said David Shearer, CEO, (ISC)², which sponsored the report.

“For the first time, we’re taking a deep dive into the millennial respondents, and we’re finding that they want different things in terms of job satisfaction and career paths. They truly are the future of cybersecurity, and I believe they hold the key to filling the well-publicised information security workforce gap.”

One of the largest studies of the information security profession ever conducted, the 2017 GISWS was carried out from May through September 2016 by Frost & Sullivan, using a web-based survey.

Since its first release in 2004, the GISWS provides a complete profile of the information security workforce, with a clear understanding of pay scales, skills gaps, training requirements, corporate hiring practices, security budgets, career progression and corporate attitudes toward information security that is of use to governments and corporations, hiring managers, and information security professionals.

Among the findings is the fact that millennials salaries are not the highest priority for millennials. However, they received higher salary increases than other generations.

What they do want is career development, including: Sponsored mentorship and leadership programs; paid-for attendance at industry events; training programs; and employer-paid professional certifications and association memberships.

The report also found that millennial workers are more likely to change employers than other generations; and, they’re more likely to aspire to become security consultants than move into managerial roles within an organisation.

“Millennials will and in many cases are already critical players who enable the success of our collective cyber defense,” said Angela Messer, executive vice president at report sponsor Booz Allen, and the firm’s cyber-innovation business leader and cyber-talent development champion.

“To attract, retain and empower these millennials, it’s clear from the Global Information Security Workforce Study that our industry must be innovative not only in its tradecraft, but also in how we support this next generation of information security professionals.

At Booz Allen, we provide opportunities for skills development by offering traditional training and covering certification or advanced degree program fees, as well as non-traditional learning opportunities, such as our Kaizen capture the flag platform and hacker space labs.”

The report also found that the UK is in a particularly bad spot. Two-thirds of UK companies have too few cyber-security personnel, with 47% claiming the reason is a dearth of qualified applicants.

But many organisations seem to be shooting themselves in the foot by refusing to hire and train inexperienced recruits. Some 93% said previous cyber-security experience is an “important factor” in hiring, and just 6% said they recruit university graduates.

Infosecurity:

 

« Cyber Skills Gap Grows Along With Threats
Malvertising Targets Your Online Users »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Cyber Senate

Cyber Senate

Cyber Senate is dedicated to bringing Operators of Essential Services together with global subject matter experts to address the challenges of evolving cyber threats to critical infrastructure.

PKWARE

PKWARE

PKWARE is a global leader in business data security, providing encryption and compression solutions to enterprise customers and government entities around the world.

Signal Sciences

Signal Sciences

Signal Sciences Web Protection Platform (WPP) provides comprehensive threat protection and security visibility for web applications, microservices, and APIs on any platform.

Digittrade

Digittrade

Digittrade develop and produce external encrypted hard disks and secure communications apps.

Hexnode MDM

Hexnode MDM

Hexnode MDM is an award winning Enterprise Mobility Management vendor which helps businesses to secure and manage BYOD, COPE, apps and content.

Hunters.AI

Hunters.AI

Hunters is the world's first autonomous hunting solution that leverages top-tier cyber expertise and AI to uncover hidden cyber threats.

BI.ZONE

BI.ZONE

BI.ZONE creates high-tech products and solutions to protect IT infrastructures and applications, and provides services from cyber intelligence and proactive defence to cybercrime investigation.

Palantir

Palantir

Palantir software empowers entire organizations to answer complex questions quickly by bringing the right data to the people who need it.

Salt Cybersecurity

Salt Cybersecurity

Salt Cybersecurity offer a four-pronged approach to information security that includes Custom Security Policy, Vulnerability Assessment, Threat Detection, and Security Awareness Training.

Transmit Security

Transmit Security

The Transmit Security Platform provides a solution for managing identity across applications while maintaining security and usability.

Cigent Technology

Cigent Technology

Cigent keeps the most valuable asset in your organization safe—your data. Our advanced endpoint and managed network security solutions prevent ransomware and data theft.

SolidRun

SolidRun

SolidRun is a leading provider of computing and network technology designed to streamline the deployment of edge computing infrastructure and support embedded and IoT markets.

Opus Security

Opus Security

Opus dramatically reduces cloud security risks by enabling teams to define, orchestrate, automate and measure remediation processes across the entire distributed organization.

Lasso Security

Lasso Security

Lasso Security is a pioneer cybersecurity company ensuring comprehensive protection for businesses leveraging generative AI and other large language model technologies.

S2W

S2W

S2W is a data intelligence company specialized in cyber threat intelligence, brand/digital abuse, and blockchain.

Simbian

Simbian

Simbian, with its hardened TrustedLLM system, is the first to accelerate security by empowering every member of a security team from the C-Suite to frontline practitioners.