Charting A Course To Address The Cyber Skills Shortage

Uploaded on 2023-04-27 in JOBS-Training, FREE TO VIEW

CEO of the UK Cyber Security Council, Professor Simon Hepburn, discusses standardising cyber security professional titles and what this means for attracting talent, streamlining recruitment, and tackling the cyber skills gap

Though the cyber security industry is still maturing, bringing the sector in line with other chartered industries, such as surveying and accountancy, has been needed for some time. 

With the UK’s cyber sector facing a workforce gap of over 14,100 people, it’s clear that action needs to be taken if we are to fulfil the government’s vision of making the UK to safest place to live and work online.

Helping the government achieve this aim – and in the process creating a more diverse sector with clear career pathways and universally recognised professional titles which map to specific skill sets – is the Council’s raison d’etre.

As we work towards achieving this mission, introducing our chartered professional standard to the sector has been a key focus. It’s a task which sits at the heart of creating the world class cyber security sector we want to see here in the UK.

Piloting The Journey To Cyber Security Excellence

When it comes to certifications and accreditations, the cyber security sector could best be described as a maze. There are a vast number of accreditations and certifications available, from a large number of course providers and awarding bodies. 

Consistency from one course to another is not always easy to find. For many organisations and businesses – especially those from outside the sector – this can make effective recruitment challenging. The Council is therefore seeking to redress this by introducing a new chartered professional standard for the sector, with universally recognised professional titles which correspond to specific skills sets.

Cyber practitioners can apply for one of three professional titles ranging from Associate to Principal and Chartered. These titles correspond with the depth of experience and expertise of the individual, demonstrated through written evidence and interview.

From an industry perspective these titles create a universally recognised standard, which will provide certainty around the skills and competencies associated with each level of professional title. 

Having a professional title recognised by the UK Cyber Security Council will help cyber practitioners evidence their knowledge and skills to employers, clients and the public. And more widely, it will also help create a pool of respected cyber security specialists.As the only organisation able to charter cyber security professionals as individuals, we are working with our partners to pilot the 16 cyber specialisms  across the sector.  

Pilot schemes for some specialisms have already been launched and we will be bringing forward new schemes in the coming months. 

By doing so, we are committed to creating clear pathways for practitioners to hone and evidence their expertise in specific disciplines within cyber.

Chartership and Recruitment

From an employer perspective, defined roles and levels of expertise, measured against an industry standard, make it easier for an organisation to identify cyber professionals who possess the requisite skill level to meet their cyber needs. When factoring recruiters into this process, the need for meaningful and reliable titles becomes even more key. It allows recruiters to be completely confident that they are putting forward candidates with adequate skills and experience for roles, ensuring they remain trusted suppliers to their clients.

All in all, the use of an industry standard and professional titles will streamline recruitment across the sector and be beneficial for cyber professionals and those in need of a cyber professional. With more than 80% of UK organisations experiencing a successful cyber attack in the past year, there is evident need for improved cyber defence across many organisations. The smoother recruitment processes for cyber practitioners can become, the quicker cyber professionals can begin to defend vulnerable businesses.

Tackling The Skills Gap

Whilst cyber security was once considered a way to future proof a business, it is now a foundational necessity. This shift has created a growing demand for cyber expertise, meaning that the current cyber skills gap is a significant issue.  According to Cybersecurity Ventures, there are 3.5 million open cyber jobs worldwide. Whilst in some instances these roles represent opportunities for upskilling and career progression, there are still entry level roles across the cyber space which need fresh new cyber professionals.

We believe setting clear benchmarks and defined career pathways for cyber professionals will help make routes into the industry clearer, as well as helping those already working in cyber to navigate their career trajectories.

The introduction of professional titles will also encourage individuals to be ambitious in their career goals, as the correlation between upskilling to gain the next level of professional title and the career opportunities which open up as a result will be much more evident. As the majority of entrants to the cyber industry currently come through career change or redirection, with just 3% via a school leaver or apprenticeship and 12% via graduate schemes, arguably there is more to be done to inspire students into the industry and present it as a viable, valuable career path. There is an education piece to perform here so that when presented with the prospect of a future in cyber, school and university leavers have a clearer understanding of what routes to entry are available and the career possibilities that could follow.

In comparison with industries such as law, medicine, accountancy or even marketing, a role in cyber can still seem like a very ‘new’ prospect. It can still carry some mystic around what is involved in the day to day, what skills are required and how to enter and progress through the industry.

Standardised professional titles will help bring cyber in line with other chartered industries and demonstrate a clear pathway into and through the industry. Resources such as our Career Framework and Career Mapping tool can also be helpful in identifying areas of interest in cyber, building on these interests and moulding them into an attractive career trajectory.

As we continue to add more specialisms to our pilot programme and partner with stakeholders across the UK to drive awareness and interest in cyber, we are building an invaluable network of talented cyber professionals. 

Continuing to do so will be crucial to addressing the cyber skills gaps and building a world leading cyber sector here in the UK.

You Might Also Read:

The Skills Gap Is Increasing Risk & Exposure To Attack:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 


 

« Chatham House Cyber Conference  | 14 June 2023
Highly Evasive Adaptive Threats & Advanced Persistent Threats »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Cyber Security Experts Association of Nigeria (CSEAN)

Cyber Security Experts Association of Nigeria (CSEAN)

Cyber Security Experts Association of Nigeria (CSEAN) is a not for profit group of professionals in the field of Information Security in Nigeria and Diaspora.

Forcepoint

Forcepoint

Forcepoint provide a unified, cloud-centric platform that safeguards users, networks and data while eliminating the inefficiencies of managing multiple point security products.

Experian

Experian

Experian provide software solutions to help organizations prevent identity fraud and crime.

Jamcracker

Jamcracker

Jamcracker is a cloud services management and cloud governance solutions company, with more than a decade of experience providing industry leading software and services.

Infowhiz solutions

Infowhiz solutions

Infowhiz provides solutions for backup/disaster recovery and network security.

LinOTP

LinOTP

LinOTP is an enterprise level, innovative, flexible and versatile OTP-platform for strong authentication.

Seavus Accelerator

Seavus Accelerator

Seavus Accelerator's goal is to create an enabling and stimulating environment for start-ups growth and provide continuous high quality acceleration and investment support.

Injazat

Injazat

Injazat Data Systems is an industry recognized market leader in the Gulf region for Information Technology, Data Center and Managed Services.

PrivacySavvy

PrivacySavvy

PrivacySavvy's mission is to provide you with all the information that you need to ensure that your internet privacy is intact, your devices are secure, and that any time you step online, you’re safe.

Yoti

Yoti

Yoti offer a suite of business solutions that span identity verification, age estimation, e-signing and AI anti-spoofing technologies.

Silicon Labs

Silicon Labs

Silicon Labs are a leader in secure, intelligent wireless technology for a more connected world. We provide award-winning hardware and software security to help safeguard connected devices.

McKinsey & Company

McKinsey & Company

McKinsey & Company is a global management consulting firm. We are trusted advisor to the world's leading businesses, governments, and institutions.

CaseMatrix

CaseMatrix

Discover a new era of legal intelligence with CaseMatrix. We identify potential class action cases arising from cyber incidents and data breaches.

Blue Cloud Softech Solutions

Blue Cloud Softech Solutions

Blue Cloud Softech propels inspiring digital transformations. We provide AI products, cybersecurity, healthcare technology, and cloud solutions.

DATS Project

DATS Project

DATS Project enables the utilization of high computing power across a number of cybersecurity services, all on a pay-as-you-go basis, eliminating the need for upfront investment costs.

CYSEC Global

CYSEC Global

CYSEC Global is a series of summits dedicated to tackle regional cyber security challenges.