Cyber-Workforce Shortage to Increase

Uploaded on 2017-03-03 in FREE TO VIEW, JOBS-Careers, NEWS-Cybersecurity News

The serious talent shortage in the information security workforce shows no sign of waning:

The Center for Cyber Safety and Education says that employers must look to millennials to fill the projected 1.8 million positions that are estimated to be unfilled by 2022.

This is an increase of 20% from the 1.5 million worker shortfall forecast by the Center’s 2015 Global Information Security Workforce Study (GISWS).

“For years, we’ve known about the impending shortage of the information security workforce, as evidenced by our study year-over-year,” said David Shearer, CEO, (ISC)², which sponsored the report.

“For the first time, we’re taking a deep dive into the millennial respondents, and we’re finding that they want different things in terms of job satisfaction and career paths. They truly are the future of cybersecurity, and I believe they hold the key to filling the well-publicised information security workforce gap.”

One of the largest studies of the information security profession ever conducted, the 2017 GISWS was carried out from May through September 2016 by Frost & Sullivan, using a web-based survey.

Since its first release in 2004, the GISWS provides a complete profile of the information security workforce, with a clear understanding of pay scales, skills gaps, training requirements, corporate hiring practices, security budgets, career progression and corporate attitudes toward information security that is of use to governments and corporations, hiring managers, and information security professionals.

Among the findings is the fact that millennials salaries are not the highest priority for millennials. However, they received higher salary increases than other generations.

What they do want is career development, including: Sponsored mentorship and leadership programs; paid-for attendance at industry events; training programs; and employer-paid professional certifications and association memberships.

The report also found that millennial workers are more likely to change employers than other generations; and, they’re more likely to aspire to become security consultants than move into managerial roles within an organisation.

“Millennials will and in many cases are already critical players who enable the success of our collective cyber defense,” said Angela Messer, executive vice president at report sponsor Booz Allen, and the firm’s cyber-innovation business leader and cyber-talent development champion.

“To attract, retain and empower these millennials, it’s clear from the Global Information Security Workforce Study that our industry must be innovative not only in its tradecraft, but also in how we support this next generation of information security professionals.

At Booz Allen, we provide opportunities for skills development by offering traditional training and covering certification or advanced degree program fees, as well as non-traditional learning opportunities, such as our Kaizen capture the flag platform and hacker space labs.”

The report also found that the UK is in a particularly bad spot. Two-thirds of UK companies have too few cyber-security personnel, with 47% claiming the reason is a dearth of qualified applicants.

But many organisations seem to be shooting themselves in the foot by refusing to hire and train inexperienced recruits. Some 93% said previous cyber-security experience is an “important factor” in hiring, and just 6% said they recruit university graduates.

Infosecurity:

 

« Cyber Skills Gap Grows Along With Threats
Malvertising Targets Your Online Users »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Brookings Institution

Brookings Institution

The Brookings Institution is a nonprofit public policy organization. Cyber security is covered within the various study areas.

PhishLine

PhishLine

PhishLine helps Information Security Professionals meet and overcome the increasing challenges associated with social engineering and phishing.

Efecte

Efecte

Efecte is a Nordic SaaS company specialized in IT Service Management, Self-Service, Identity Management and Access Governance solutions.

Maverick Technologies

Maverick Technologies

Maverick is an industrial automation, enterprise integration and operational consulting company. Services include industrial cyber security.

TrustArc

TrustArc

TrustArc provide privacy compliance and risk management with integrated technology, consulting and TRUSTe certification solutions – addressing all phases of privacy program management.

Medigate

Medigate

Medigate is a dedicated medical device security platform protecting all of the connected medical devices on health care provider networks.

PRESENSE Technologies

PRESENSE Technologies

PRESENSE Technologies specializes in monitoring and enforcing IT security policies at critical points in the network and on end systems.

IXDen

IXDen

IXDen provides a novel software-based approach to OT systems protection, covering Industrial IoT cybersecurity and sensor data integrity.

Ensurity Technologies

Ensurity Technologies

Ensurity is a deep-tech cybersecurity engineering company; designs and manufactures specialized secure hardware, software, and mobile application solutions.

Upfort

Upfort

Upfort (formerly Paladin Cyber) unifies award-winning security and robust cyber insurance to deliver comprehensive cyber risk solutions.

Bitcrack

Bitcrack

Bitcrack Cyber Security helps your company understand and defend your threat landscape using our key experience and skills in cybersecurity, threat mitigation and risk.

Epiphany Systems

Epiphany Systems

Epiphany enhances your defensive security controls by providing you with an offensive perspective. We expose the most likely attack paths to your most critical IT assets and users.

BreachQuest

BreachQuest

BreachQuest brings together cybersecurity experts with decades of experience identifying security flaws, penetrating networks, and responding to incidents.

Black Girls In Cyber (BGiC)

Black Girls In Cyber (BGiC)

Black Girls In Cyber's mission is to increase industry awareness and diversity in cybersecurity, privacy, and STEM for women of color.

Global Market Innovators (GMI)

Global Market Innovators (GMI)

Global Market Innovators (GMI) delivers secure technology solutions to organizations in need.

Blackpanda

Blackpanda

Blackpanda is Asia’s premier cyber security incident response group, hyper-focused on digital forensics and cyber crisis response.