White House Reorganisation Addresses Cyber Workforce Gap

Uploaded on 2018-06-26 in NEWS-News Analysis, JOBS-Training, JOBS-Careers, GOVERNMENT-National, FREE TO VIEW

The White House wants to build a single, unified strategy for strengthening the cybersecurity workforce at every agency across government. The White House reorganization plan would force agencies to assess the strength of their cyber workforce and quickly fill the gaps they find.

The Trump administration on Thursday tasked the Homeland Security Department and Office of Management and Budget with creating a governmentwide approach for recruiting and retaining skilled cybersecurity personnel. The order, which came as part of the White House reorganization plan, aims to address the growing shortage of top cyber talent at federal agencies.

“The workforce shortage compounds the government’s challenges in responding to a constantly evolving threat environment and achieving its many IT-dependent missions,” the report said. “The government lacks a comprehensive, risk-derived understanding of which cybersecurity skillsets the federal enterprise needs to develop and which positions are most critical to fill.”

As it stands, each agency is responsible for addressing its own cybersecurity challenges, which the administration said creates “internal competition for talent... that degrade[s] agencies’ ability to defend networks from malicious actors and respond to cyber incidents.” The plan would standardize how agencies assess and meet their cyber needs.

Under the plan, the government would take stock of its entire cyber workforce by this fall using the framework created by the National Initiative for Cybersecurity Education. DHS would then work with agencies to assess their individual skill gaps and prioritize various hiring initiatives by the end of fiscal 2019.

Government has historically struggled to hire top tech professionals, but private sector’s growing demand for cyber talent compounded this problem. Today, the government employs almost five IT specialists over age 60 for each person under 30. A decade ago, the ratio stood slightly below two-to-one.

The private sector usually offers cyber specialists higher salaries and more career mobility than government, but the new approach looks to remove many of the obstacles that keep the best and brightest out of Washington.

The White House plan would allow DHS to create a new hiring track that would let it bring on cyber talent faster and offer those hires higher salaries. After working out the kinks in the Cyber Talent Management System, DHS would work to expand the system across all federal agencies.

OMB and DHS would also work to streamline the security clearance approval process for cyber professionals, look for ways to give employees the ability to move more quickly between different positions and agencies and determine whether creating short-term positions could help government respond quickly in the event of a major cyber incident.

The two agencies would also work with the Office of Personnel Management to create training programs to equip the current IT workforce with the skills to fight the latest digital threats.

Trump's reorganization plan involves more than just cybersecurity and workforce issues. It also includes proposals to digitize the government and improve federal customer experience, among others.

Nextgov:

You Might Also Read:

Are US Federal Cyber Workers Good Enough?

« Cybrary and Cybersecurity Collaborative Form New Strategic Partnership
Using Machine Learning To Spot Photoshopped Images »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ASIS International

ASIS International

ASIS International is a global community of security practitioners with a role in the protection of assets - people, property, and/or information.

Cloud53

Cloud53

Cloud53 specialise in improving operational IT through strategic use of Cloud technologies and services.

Microsoft Security

Microsoft Security

Microsoft Security helps protect people and data against cyberthreats to give you peace of mind. Safeguard your people, data, and infrastructure.

CybergymIEC

CybergymIEC

CybergymIEC is a global leader in cyber defense solutions and training services.

PETRAS IoT Hub

PETRAS IoT Hub

PETRAS is a consortium of 12 research institutions and the world’s largest socio-technical research centre focused on the future implementation of the IoT.

NPCore

NPCore

NPCore is specialized in defense solution against unknown APT and Ransomware and provides two-level defense on network and endpoint based on behavior.

Meiya Pico Information Co

Meiya Pico Information Co

Meiya Pico is the leading digital forensics and information security products and service provider in China.

NAVEX Global

NAVEX Global

NAVEX Global’s compliance management system consolidates your entire GRC program onto a scalable cloud-based platform.

TorGuard

TorGuard

TorGuard is a Virtual Private Network services provider offering secure encrypted access to the internet.

Women in CyberSecurity (WiCyS)

Women in CyberSecurity (WiCyS)

Women in CyberSecurity (WiCyS) is a non-profit organization dedicated to the recruitment, retention and advancement of women in the cybersecurity field.

eLearnSecurity

eLearnSecurity

eLearnSecurity is an innovator in the IT Security training market providing quality online courses paired with highly practical virtual labs.

WisePlant

WisePlant

WisePlant's portfolio of solutions and services includes process measurement, secure automation, industrial cybersecurity, functional safety and more.

Binary Defense

Binary Defense

Binary Defense protect businesses of all sizes through advanced cybersecurity solutions including Managed Detection and Response, Security Information and Event Management and Counterintelligence.

KDM Analytics

KDM Analytics

KDM Analytics software products automate the NIST risk management framework (RMF) assessment for operational technology (OT) systems.

Cybeta

Cybeta

Cybeta's actionable cybersecurity intelligence keeps your business safe with strategic and operational security recommendations that prevent breaches.

Speedinvest

Speedinvest

Speedinvest is one of Europe’s most active early-stage investors with a focus on Deep Tech, Fintech, Industrial Tech, Network Effects, and Digital Health.