Australia Hardest Hit By Cybersecurity Skills Shortage

The lack of cyber security professionals is felt more acutely in Australia than in other countries, according to a report by US think tank, the Center for Strategic and International Studies.

The survey, commissioned by Intel Security, found that 88 per cent of Aussie IT decision makers believe there is a shortage of cyber security skills both in their organisation and within the nation. That figure is on a par with IT chief’s in Mexico, but higher than the six other countries surveyed.

The survey’s 75 Australian respondents, also predicted that 17 per cent of cybersecurity positions advertised by their company would go unfilled by 2020, higher than the 15 per cent of jobs estimated globally.

The scarcest skills among an Australian organisation’s cybersecurity professionals were reported to be ‘technical skills in intrusion detection’, ‘technical skills in software development’ and ‘technical skills in attack mitigation’.

Education and experience

Globally, the survey participants agreed that although a relevant bachelor degree was expected as a minimum requirement to entry level cyber security jobs, experience was a better way to acquire skills.

In Australia 57 per cent of organisations look for a Bachelor’s degree as a minimum requirement, but only 27 per cent said this was important when evaluating candidates for cyber security jobs. Only a quarter believed education programs fully prepare professionals for the industry.

Australian companies put particular weight on a candidate’s experience of working with a competitor with 55 per cent calling this the most important factor when evaluating a potential employee.

“From a recruitment perspective the skills shortage in the security industry is nothing new, however we are finding it increasingly difficult to source stellar candidates due to the ever changing and competitive nature of the IT Security market,” said director of Melbourne IT executive recruitment company Halcyon Knights, Brent Skinner.

 “Years of experience is no longer the be all when assessing candidates, clients are seeking ‘new age’ candidates that have grown up in the cloud and cyber security world, who possess creativity and a technical curiosity that set them apart.”

Critical impact

The lack of local skills is having a detrimental effect on Australian businesses said Andy Hurren, Intel's Sydney-based security solutions architect.

Responding to the findings that 44 per cent of Australian businesses felt that they are a target for hackers due to limited cyber security (the second highest behind Israel) and nearly a third said they had already lost proprietary data, he said: “The need for a stronger cyber security workforce is critical. The skills shortage is clearly having an impact on companies across Australia. It’s a clear issue affecting our industry and whilst the shortage is well known, this report helps to shine a spotlight on just what it means to our local businesses.

"Every day we are seeing seats go unfilled due to the shortage and we must rectify this. We as an industry need to do more to cultivate and encourage development of the right security skill sets for tomorrow’s workforce.”

The shortage does mean it’s a great time to be a cyber security professional. The report, which questioned private and public sector IT leaders in Australia, France, Germany, Israel, Japan, Mexico, the UK and US, noted that the demand had driven up salaries, highlighting US data that shows cyber security positions pay almost 10 per cent more than other IT jobs.

“We are seeing first-hand the effects this is having in terms of recruitment with the competition for experienced professionals driving up salaries, making it harder for employers to retain staff and often necessitating a greater emphasis and reliance on overseas candidates to fill skill gaps," explained Sydney-based security recruiter and director of Inview Consulting, Skye Kirkby-Gray.

Globally 76 per cent of respondents said their governments are not investing enough in programs to help cultivate cyber security talent and believe laws and regulations for cyber security in their country are inadequate.

In Australia, however, nearly 80 per cent of respondents felt laws were effective, and 68 per cent believed them to be the ‘right level of strictness’.

In April the Australian government launched its $230m Cyber Security Strategy with 33 initiatives aimed at improving defences and creating a 'cyber smart nation'.

Australian IT leaders surveyed believed the country was well informed on the issue of data privacy and data security.

CIO:

 

« How To Use Cybersecurity Big Data Effectively
Hacking Elections Is Easy »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

TestingXperts

TestingXperts

TestingXperts is a specialist software QA and testing company.

CERT-UG/CC

CERT-UG/CC

CERT-UG/CC is the national Computer Emergency Response Team for Uganda, operating under the National Information Technology Authority (NITA-U)

Telecom Information Sharing and Analysis Center Japan (T-ISAC Japan)

Telecom Information Sharing and Analysis Center Japan (T-ISAC Japan)

T-ISAC Japan coordinates information sharing and activities related to ISP/telecommunications network security in Japan.

Protection Group International (PGI)

Protection Group International (PGI)

PGI helps organisations and governments to manage digital risk. From cyber security services to business intelligence, we help reduce the risks to your finances, reputation, assets and people.

Center for Identity - University of Texas at Austin

Center for Identity - University of Texas at Austin

The mission of the Center is to deliver the highest-quality discoveries, applications, education, and outreach for excellence in identity management, privacy, and security.

Cyphercor

Cyphercor

Cyphercor is a leading smartphone and desktop-based two-factor authentication (2FA) provider.

ComCERT

ComCERT

ComCERT SA is an independent, private consulting company focusing in the assistance of its customers facing the dangers of cyber threats and security incidents.

Risk Based Security (RBS)

Risk Based Security (RBS)

Risk Based Security provide the most comprehensive and timely vulnerability intelligence, breach data and risk ratings.

Cord3

Cord3

Cord3 delivers data protection, even from trusted administrators – or hackers posing as administrators – with high privilege.

QuantiCor Security

QuantiCor Security

QuantiCor Security is one of the world’s leading developers and manufacturers of quantum computer resistant security solutions for IT infrastructures and the Internet of Things (IoT).

MS Tech Solutions

MS Tech Solutions

MS Tech Solutions is a Jamaican-based, multinational consulting company that specializes in the architecture, implementation and management of key network and Information technologies.

Singularico

Singularico

Singularico help secure your software using the power of AI.

American Binary

American Binary

American Binary is a Quantum Safe Networking (TM) and post-quantum encryption company.

Bell Canada

Bell Canada

Bell is the leading provider of network and communications services for Canadian businesses and the partner for delivering network, IoT, cloud, voice, collaboration and security solutions.

UFS Technology

UFS Technology

UFS, the bank technology outfitter for community banks, provides purpose-built, bank-exclusive technology services and solutions including cybersecurity.

Secure Cyber Management

Secure Cyber Management

Secure Cyber Management provides industry-leading cloud security advice, guidance and services.