White House Reorganisation Addresses Cyber Workforce Gap

Uploaded on 2018-06-26 in NEWS-Cybersecurity News, JOBS-Training, JOBS-Careers, GOVERNMENT-National, FREE TO VIEW

The White House wants to build a single, unified strategy for strengthening the cybersecurity workforce at every agency across government. The White House reorganization plan would force agencies to assess the strength of their cyber workforce and quickly fill the gaps they find.

The Trump administration on Thursday tasked the Homeland Security Department and Office of Management and Budget with creating a governmentwide approach for recruiting and retaining skilled cybersecurity personnel. The order, which came as part of the White House reorganization plan, aims to address the growing shortage of top cyber talent at federal agencies.

“The workforce shortage compounds the government’s challenges in responding to a constantly evolving threat environment and achieving its many IT-dependent missions,” the report said. “The government lacks a comprehensive, risk-derived understanding of which cybersecurity skillsets the federal enterprise needs to develop and which positions are most critical to fill.”

As it stands, each agency is responsible for addressing its own cybersecurity challenges, which the administration said creates “internal competition for talent... that degrade[s] agencies’ ability to defend networks from malicious actors and respond to cyber incidents.” The plan would standardize how agencies assess and meet their cyber needs.

Under the plan, the government would take stock of its entire cyber workforce by this fall using the framework created by the National Initiative for Cybersecurity Education. DHS would then work with agencies to assess their individual skill gaps and prioritize various hiring initiatives by the end of fiscal 2019.

Government has historically struggled to hire top tech professionals, but private sector’s growing demand for cyber talent compounded this problem. Today, the government employs almost five IT specialists over age 60 for each person under 30. A decade ago, the ratio stood slightly below two-to-one.

The private sector usually offers cyber specialists higher salaries and more career mobility than government, but the new approach looks to remove many of the obstacles that keep the best and brightest out of Washington.

The White House plan would allow DHS to create a new hiring track that would let it bring on cyber talent faster and offer those hires higher salaries. After working out the kinks in the Cyber Talent Management System, DHS would work to expand the system across all federal agencies.

OMB and DHS would also work to streamline the security clearance approval process for cyber professionals, look for ways to give employees the ability to move more quickly between different positions and agencies and determine whether creating short-term positions could help government respond quickly in the event of a major cyber incident.

The two agencies would also work with the Office of Personnel Management to create training programs to equip the current IT workforce with the skills to fight the latest digital threats.

Trump's reorganization plan involves more than just cybersecurity and workforce issues. It also includes proposals to digitize the government and improve federal customer experience, among others.

Nextgov:

You Might Also Read:

Are US Federal Cyber Workers Good Enough?

« Cybrary and Cybersecurity Collaborative Form New Strategic Partnership
Using Machine Learning To Spot Photoshopped Images »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ZDL Group

ZDL Group

At ZDL (formerly ZeroDayLab) we take a comprehensive view of our clients cyber security risks and provide quality services to address those risk

Information Security Research Group - University of South Wales

Information Security Research Group - University of South Wales

The Information Security Research Group has an international reputation in the areas of network security, computer forensics and threat analysis.

Malta Information Technology Agency (MITA)

Malta Information Technology Agency (MITA)

MITA is the central driver of Government Information and Communications Technology (ICT) policy, programmes and initiatives in Malta.

PhishLabs

PhishLabs

PhishLabs provides 24/7 services that help organizations protect against the cyberattacks targeting their employees, their customers and their brands.

Cyber Security Capital (CS^)

Cyber Security Capital (CS^)

Cyber Security Capital is a consultancy helping to mobilise and empower individuals, corporate leaders and entrepreneurs in cyber security.

Certus Software

Certus Software

Our Secure Data Erasure solutions protect customer data confidentiality by completely erasing it from data storage devices.

Focal Point Data Risk

Focal Point Data Risk

Focal Point is a pure-play data risk management provider capable of offering end-to-end consulting, implementation, and training services.

KIOS Center of Excellence (KIOS CoE)

KIOS Center of Excellence (KIOS CoE)

KIOS carries out top level research in the area of Information and Communication Technologies (ICT) with emphasis on the Monitoring, Control and Security of Critical Infrastructures.

Marvell Technology Group

Marvell Technology Group

Marvell is a semiconductor company providing solutions for storage, processing, networking, security and connectivity.

Level39 (L39)

Level39 (L39)

Level39 is the world's most connected tech community, with over 200 tech startups and scaleups based onsite.

Sentor Managed Security Services

Sentor Managed Security Services

Sentor Managed Security Services is a cybersecurity company that enables organizations to exist in a digitally connected world.

BlueHalo

BlueHalo

BlueHalo is purpose-built to provide industry capabilities in the domains of Space Superiority and Directed Energy, Missile Defense and C4ISR, and Cyber and Intelligence.

Symbol Security

Symbol Security

Through situational learning, simulations, and a gamified user experience, Symbol strengthens the cyber awareness of employees and helps companies lower cyber risk.

Menaya

Menaya

Menaya provide Ethical Hackers for leading companies while also providing cyber security solutions to help major infrastructures protect against cyber crime.

Global Market Innovators (GMI)

Global Market Innovators (GMI)

Global Market Innovators (GMI) delivers secure technology solutions to organizations in need.

TriVigil

TriVigil

TriVigil offer a full-service, comprehensive cybersecurity approach specifically tailored to meet the unique needs of educational institutions.