Cybersecurity Skill Shortage Has Industry Worried

After years of massive hacker attacks on industry and government, the realization that the bad guys are winning has led to a surge in cybersecurity jobs that has outpaced the supply of people to fill them.

Recently at the RSA 2016 security conference, the issue bubbled up in keynotes and seminars with discussions of how to get young people interested in tech careers to consider the field.

"The volume of threats has changed dramatically," said Christopher Young, vice president of Intel's Security Group. Years before Intel acquired it, McAfee Labs saw 25 threats a day, he said. "Today, we see about 500,000 threats a day."

But the professionals to counter those threats are small in number, he said in an interview.

"We just have to get after this problem," he said. "Students will tell you that even if you're a technical major in college, cybersecurity isn't a core part of the curriculum." Young called on the industry to reach out to colleges, universities and even high schools to raise awareness and launch educational programs.

A Stanford University study estimates there are 200,000 unfilled cybersecurity jobs this year. Cisco Systems says some estimates point to more than 1 million unfilled security jobs worldwide

The Boston-based consulting firm Burning Glass reported last year that the demand for cybersecurity jobs is twice that of all information technology jobs, with cybersecurity commanding a 9 percent salary premium over other IT categories. The jobs require years of training and experience, making them hard to fill.

Indiana is tackling the problem with a new Security Operations Center where Purdue University students work next to state government security personnel to identify threats to state networks. It's hoped that the center, announced in October, will encourage students to consider careers in cybersecurity.

At the end of his keynote talk, Young introduced Morgan Mayernik, a Purdue freshman majoring in materials science engineering and minoring in biometrics, who said students are often unaware of opportunities in cybersecurity.

"We're interested," Mayernik told the audience. "This is a problem that's dear to our hearts. We live in a technical world, but students aren't being told this is an option for them. And they need to be told this and they need to be given these problems, because given the opportunities, we will take them. We want to delve into these issues."

Beyond recruiting, the industry needs to automate to help cope with the labor gap, according Justin Somaini, chief security officer of SAP, the German software giant.

"We need to have really skilled individuals; you'll never get around that," Somaini said. "My stance is I might never find enough really good security people in the job market because it's challenging. We need to take a multifaceted approach to deal with the labor gap, focusing attention on how we innovate," he said.

"There is a natural evolution we're seeing into advanced machine learning. Artificial intelligence is one of these research areas we need to focus on," Somaini said. "Not true AI, but learning algorithms and how they can identify attacks."

The White House is tackling the issue with a proposed initiative to "develop a technologically-skilled and cyber-savvy workforce," according to the budget message.

MercuryNews: http://bayareane.ws/1pBgyiW

« Fighting The Invisible War In CyberSpace
Russian Scientists Have Solved Light-Based Computers »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Cycuity

Cycuity

Cycuity (formerly Tortuga Logic) is a cybersecurity company that is transforming the way we secure silicon with comprehensive hardware security assurance.

Marcus Donald People

Marcus Donald People

Marcus Donald People is a UK IT recruitment specialist covering the following sectors: Infrastructure & Cloud, Information Security, Development, Business transformation.

Ntirety

Ntirety

Ntirety Managed Security Services offer enterprise businesses the advanced tools, processes, and support to ensure your infrastructure, networks, and mission-critical applications are secure.

Griffeshield

Griffeshield

Griffeshield is a company specialised in new information technologies used to protect Intellectual Property.

Injazat

Injazat

Injazat Data Systems is an industry recognized market leader in the Gulf region for Information Technology, Data Center and Managed Services.

Sevatec

Sevatec

Sevatec’s Active Cyber Defense (ACD) methodology proactively defends against adversarial kills chain, addressing active and emerging threats while reducing program vulnerabilities and risks.

Tetrad Digital Integrity (TDI)

Tetrad Digital Integrity (TDI)

TDI is a world-class consulting firm offering cybersecurity services to government agencies and commercial clients around the world.

iON United

iON United

iON United is a full-service IT security solutions provider and one of the most trusted names in cybersecurity in Canada.

ISECURION Technology & Consulting

ISECURION Technology & Consulting

ISECURION is an information security consulting company. We provide a unique blend of services to our customers catering to the current information security landscape.

StrataCore

StrataCore

StrataCore is a single-source technology lifecycle advocate that works behind IT teams as a strategic partner to help them achieve peak enterprise outcomes.

Oxford Internet Institute - University of Oxford

Oxford Internet Institute - University of Oxford

The Oxford Internet Institute is a multidisciplinary research and teaching department of the University of Oxford, dedicated to the social science of the Internet.

Kobalt.io

Kobalt.io

Kobalt are bringing the monitoring capabilities of enterprise-class security teams to smaller organizations.

Technivorus Technology

Technivorus Technology

Technivorus is a deep-tech firm delivering customized Cybersecurity, Digital Marketing, Web & App Development, and multifarious IT services for businesses across the globe.

Binarii Labs

Binarii Labs

Binarii are focused on helping enterprises to design and deploy SaaS solutions that utilise DLT (Digital Ledger Technology) effectively, efficiently and sensibly.

Frontal

Frontal

Frontal is a specialized unit in Blockchain and Web3.0 cybersecurity. Securing Digital Assets, Cryptocurrency, DeFi, Blockchain and Web3.0 ecosystem.

Longbow Security

Longbow Security

Longbow automates root cause for your application and cloud risks, enabling teams with intelligent remediation actions that reduce the most risk with the least effort.