Cyber Skills Shortages Stands At Four Million

Uploaded on 2019-11-19 in JOBS-Training, JOBS-Careers, FREE TO VIEW

A shortage in the global cybersecurity workforce continues to be a problem for companies in all industries and of all sizes.  The technology industry has never seen anything quite like it.

Seasoned cyber pros typically earn $95,000 a year, often markedly more and yet job openings can linger almost indefinitely. 

The ever-leaner cybersecurity workforce makes many companies desperate for help. In an era of high-profile data breaches and devastating cyberattacks, cybersecurity impacts every individual and every organisation.  Global IT security skills shortages have now surpassed four million

According to the international certifcation organisation (ISC)2 the number of unfilled positions now stands at 4.07 million professionals, up from 2.93 million this time last year. This includes 561,000 in North America and a staggering 2.6 million short fall in APAC. The shortage of skilled workers in the industry in Europe has soared by more than 100% over the same period, from 142,000 to 291,000.

(ICS)2 have released their  latest Cybersecurity Workforce Study based upon interviews with over 3200 security professionals around the world. The report estimates the current global workforce at 2.93 million, including 289,000 in the UK and 805,000 in the US. Nearly two-thirds (65%) of responding organisations reported a shortage of cybersecurity staff, with a lack of skilled or experienced security personnel their number one workplace concern (36%).

Over half (51%) of cybersecurity professionals said their organisation is at moderate or extreme risk due to staff shortages.
four key strategies to help organisations tackle such shortages. These include in-house training and development and setting applicant qualification requirements at the right level to ensure as wide a net as possible is cast.

(ISC)2 also stressed the need to attract new workers from other professions, or recent graduates with tangential degrees, as well as seasoned professionals from consulting and contracting sectors. Organizations should look to strengthen from within by cross-training existing IT professionals where appropriate. In an era of high-pro le data breaches and devastating cyberattacks, cybersecurity impacts every individual and every organisation. 

Top Job Concerns Among Cybersecurity Professionals include: 

  • 36% Lack of skilled/experienced cybersecurity security personnel 
  • 28% Lack of standard terminology for effective communication 
  • 27% Lack of resources to do my job effectively 
  • 24% Lack of work-life balance 
  • 24% Inadequate budget for key security initiatives 

Cybersecurity professionals are more than twice as likely to be male, meaning there is an under-tapped demographic available for recruiting if companies can position the role in a way that overcomes common stereotypes. 30% of survey respondents were women. 

Among respondents with security-specific titles, 23% of study participants were women. The highest percentage of women cybersecurity professionals came from Latin America (39%) and North America (34%). 

The 2019 (ISC)2 Cybersecurity Workforce Study is based on online survey data collected in June and July 2019 from 3,237 individuals responsible for security/cybersecurity at work throughout North America, Europe, Latin America (LATAM) and Asia-Pacific (APAC).  The sample within each country was controlled to ensure a mix of company sizes and industries. 

InfoSecurity Magazine:          ISC2:

You Might Also Read:

Britain’s Cybersecurity Skills Gap:


 

 

« British Police At War Against Cyber Crime
Four Security Principles For For Small Business »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

IT Security Guru

IT Security Guru

IT Security Gurus publish daily breaking news. interviews with the key thinkers in IT security, videos and the top 10 stories as picked by our Editor.

ForeScout Technologies

ForeScout Technologies

ForeScout delivers pervasive network security by allowing organisations to continuously monitor & mitigate security exposures & cyberattacks.

King & Spalding

King & Spalding

King & Spalding is an international law firm with offices in the United States, Europe and the Middle East. Practice areas include Data, Privacy & Security.

Site24x7

Site24x7

Site24x7 is an AI-powered observability platform for DevOps and IT operations.

Picus Security

Picus Security

Huge gaps often exists between the "perceived"​ and "actual"​ IT security level of an organization. Picus Security continuously assesses security controls and reveals deficient ones before hackers do.

G DATA CyberDefense

G DATA CyberDefense

G Data developed the world's first antivirus software. We now ensure the security of small, large and medium-sized companies all over the world.

Sweepatic

Sweepatic

The Sweepatic reconnaissance platform discovers and analyses all internet facing assets and their exposure to risk.

Agio

Agio

Agio is a hybrid managed IT and cybersecurity provider servicing the financial services, health care and payments industries.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

CloudSphere

CloudSphere

CloudSphere’s flagship Cloud Governance Platform enables enterprises and cloud service providers to simplify and optimize cloud migration, management, and governance.

World Cyber Security Summit

World Cyber Security Summit

World Cyber Security Summit, by Trescon, is a thought-leadership driven platform for CISOs who are looking to explore new-age threats and the technologies/strategies that can help mitigate them.

RedHunt Labs

RedHunt Labs

RedHunt Labs is a premier Cybersecurity Solutions provider, offering Attack Surface Management solution 'NVADR' and Penetration Testing services.

Resilience Cyber insurance

Resilience Cyber insurance

Resilience helps to improve cyber resilience by connecting cyber insurance coverage with advanced cybersecurity visibility and a shared plan to reinforce great cyber hygiene.

Mitigo Group

Mitigo Group

Mitigo offers a well considered and effective approach to keeping businesses completely secure from any digital attacks.

Velotix

Velotix

Velotix empowers organizations to maximize the value of their data while ensuring security and compliance in a rapidly evolving regulatory landscape.

BlackSignal Technologies

BlackSignal Technologies

BlackSignal Technologies provides cybersecurity, digital signal processing and electronic warfare products to help DOD and IC agency customers counter near-peer threats and security challenges.