Australia Hardest Hit By Cybersecurity Skills Shortage

The lack of cyber security professionals is felt more acutely in Australia than in other countries, according to a report by US think tank, the Center for Strategic and International Studies.

The survey, commissioned by Intel Security, found that 88 per cent of Aussie IT decision makers believe there is a shortage of cyber security skills both in their organisation and within the nation. That figure is on a par with IT chief’s in Mexico, but higher than the six other countries surveyed.

The survey’s 75 Australian respondents, also predicted that 17 per cent of cybersecurity positions advertised by their company would go unfilled by 2020, higher than the 15 per cent of jobs estimated globally.

The scarcest skills among an Australian organisation’s cybersecurity professionals were reported to be ‘technical skills in intrusion detection’, ‘technical skills in software development’ and ‘technical skills in attack mitigation’.

Education and experience

Globally, the survey participants agreed that although a relevant bachelor degree was expected as a minimum requirement to entry level cyber security jobs, experience was a better way to acquire skills.

In Australia 57 per cent of organisations look for a Bachelor’s degree as a minimum requirement, but only 27 per cent said this was important when evaluating candidates for cyber security jobs. Only a quarter believed education programs fully prepare professionals for the industry.

Australian companies put particular weight on a candidate’s experience of working with a competitor with 55 per cent calling this the most important factor when evaluating a potential employee.

“From a recruitment perspective the skills shortage in the security industry is nothing new, however we are finding it increasingly difficult to source stellar candidates due to the ever changing and competitive nature of the IT Security market,” said director of Melbourne IT executive recruitment company Halcyon Knights, Brent Skinner.

 “Years of experience is no longer the be all when assessing candidates, clients are seeking ‘new age’ candidates that have grown up in the cloud and cyber security world, who possess creativity and a technical curiosity that set them apart.”

Critical impact

The lack of local skills is having a detrimental effect on Australian businesses said Andy Hurren, Intel's Sydney-based security solutions architect.

Responding to the findings that 44 per cent of Australian businesses felt that they are a target for hackers due to limited cyber security (the second highest behind Israel) and nearly a third said they had already lost proprietary data, he said: “The need for a stronger cyber security workforce is critical. The skills shortage is clearly having an impact on companies across Australia. It’s a clear issue affecting our industry and whilst the shortage is well known, this report helps to shine a spotlight on just what it means to our local businesses.

"Every day we are seeing seats go unfilled due to the shortage and we must rectify this. We as an industry need to do more to cultivate and encourage development of the right security skill sets for tomorrow’s workforce.”

The shortage does mean it’s a great time to be a cyber security professional. The report, which questioned private and public sector IT leaders in Australia, France, Germany, Israel, Japan, Mexico, the UK and US, noted that the demand had driven up salaries, highlighting US data that shows cyber security positions pay almost 10 per cent more than other IT jobs.

“We are seeing first-hand the effects this is having in terms of recruitment with the competition for experienced professionals driving up salaries, making it harder for employers to retain staff and often necessitating a greater emphasis and reliance on overseas candidates to fill skill gaps," explained Sydney-based security recruiter and director of Inview Consulting, Skye Kirkby-Gray.

Globally 76 per cent of respondents said their governments are not investing enough in programs to help cultivate cyber security talent and believe laws and regulations for cyber security in their country are inadequate.

In Australia, however, nearly 80 per cent of respondents felt laws were effective, and 68 per cent believed them to be the ‘right level of strictness’.

In April the Australian government launched its $230m Cyber Security Strategy with 33 initiatives aimed at improving defences and creating a 'cyber smart nation'.

Australian IT leaders surveyed believed the country was well informed on the issue of data privacy and data security.

CIO:

 

« How To Use Cybersecurity Big Data Effectively
Hacking Elections Is Easy »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

National Crime Agency (NCA)

National Crime Agency (NCA)

The NCA's Cyber Crime Unit focuses on critical cyber incidents in the UK as well as longer-term activity against the criminals and the services on which they depend.

Centre for International Governance Innovation (CIGI)

Centre for International Governance Innovation (CIGI)

CIGI research areas include Conflict Management & Security which encompass cyber security and cyber warfare.

IGEL Technology

IGEL Technology

IGEL Technology is one of the world's leading thin client vendors. Thin clients increase data security and compliance.

Axial

Axial

Axial Systems is one of the UK’s leading solution providers and systems integrators in network, security and services.

ThaiCERT

ThaiCERT

ThaiCERT is the national Computer Security Incident Response Team (CSIRT) for Thailand.

AirCUVE

AirCUVE

AirCUVE provide authentication and access control solutions for networks and mobile security.

Ceerus

Ceerus

Ceerus was created to simplify the process of deploying and managing security across all the channels in an organisation.

Cybercrime Support Network (CSN)

Cybercrime Support Network (CSN)

CSN is a public-private, nonprofit collaboration created to meet the challenges facing millions of individuals and businesses affected each and every day by cybercrime.

Fiserv

Fiserv

Fiserv offers a wide array of Risk & Compliance solutions to help you prevent losses from fraud and ensure adherence to regulatory and compliance mandates.

Valid Network

Valid Network

Valid Network DSP is blending traditional cyber security methodologies with blockchain transactions to achieve trust, internal and federated between organizations and stake holders.

Cloud4C

Cloud4C

Cloud4C is a leading automation-driven, application focused cloud Managed Services Provider.

Josef Ressel Centre for Intelligent & Secure Industrial Automation

Josef Ressel Centre for Intelligent & Secure Industrial Automation

The Josef Ressel Centre for Intelligent and Secure Industrial Automation investigates the fundamentals of digital assistants for industrial machines that enable intelligent and secure operation.

Prikus Tech

Prikus Tech

Prikus is a full-fledged Cyber Security Company helping organizations worldwide to manage cyber risks. We offer Risk & Compliance Services, Security Testing & Managed Security Services.

Resmo

Resmo

Resmo is an all in one platform for SaaS app and access management for modern IT teams.

AuthenticID

AuthenticID

Our mission at AuthenticID is to combat fraud worldwide and help businesses protect their enterprise and valuable data assets.

Apexanalytix

Apexanalytix

Apexanalytix is a leading provider of supplier onboarding, risk management and recovery solutions.