In S.Africa The Cybersecurity Skills Gap Is A Chasm

Uploaded on 2018-01-30 in NEWS-Cybersecurity News, JOBS-Careers, FREE TO VIEW

The digital landscape has grown at a rapid pace over the past 10 years, says Vikas Kapoor, Practice head, Cybersecurity and GRC at In2IT Technologies.

The sheer scale of our connected, digital world means that the scope for cyber-crime has also broadened. As each new technology is unveiled, it introduces a new security risk.

South Africa 3rd most Cyber-Attacked Country
South Africa has seen a steady rise in cyber-crime, jumping to rank as the 3rd most cyber attacked country in the world out of 117 countries. The situation is dire, and not helped by their vast shortage of cyber security skills. Cyber security professionals are constantly having to play catch up, and the development of cyber security skills is simply not keeping pace with digital and technological expansion, a lack which cyber criminals are capitalising on.

Mind the Gap
This skills shortage is not confined to South African borders, and countries across the globe face similar challenges. The highly publicised global security breaches of this past year point to an increase in the prevalence of the likes of ransomware, a malware that keeps evolving to find new ways to penetrate and attack networks. As fast as cyber security measures improve to bridge current security gaps, so does cyber threats, resulting in a continuous shortfall of suitably skilled people capable of properly protecting networks from intrusion. Beyond the vast size of growing security concerns, another contributor to the dire shortage of skills in this critical sector is time. 

Becoming a knowledgeable expert in cyber security takes a considerable investment of time spent learning various technologies and systems, and understanding how they integrate. 

It takes time to build a pool of skilled resources, including time spent in the classroom, to time spent garnering experience protecting live networks. Unfortunately, the cyber security space is already on the back foot and time is of the essence. Cybersecurity experts require more than just the skills taught in a classroom. They also require a mindset that thirsts for knowledge on security threats. It's more than simply understanding how to protect a network but, also, what to protect it from.  The ability to navigate and understand the dark Web, or what new cyber security threats are emerging goes a long way towards a building proactive, security-centric mindset.

Fill the Gap
The challenge for businesses is that they do not necessarily have the right in house skills to cater to their growing cyber security needs. Furthermore, they may not have the right knowledge to hire people with the right skills either. There is a distinct gap in the market for recruitment agencies that specialise in the cyber security industry. Organisations that are tackling this recruitment process themselves, need to ensure they are opting for individuals who possess the full package: suitable cyber security certifications, experience with multiple environments and the security-centric mindset. 

However, such individuals are, for now, few and far between.

Organisations can look to co-sourced services to address their cyber security needs, partnering with experienced outsource partners to supplement their own teams, thus building on their skills while benefitting from the expertise of experts. From a national perspective, South Africa needs to begin addressing the skills gap before we can start to reduce our chances of cyber-attack. 

The United States of America have developed their NICE Cybersecurity Workforce Framework which details a framework around categorising, organising, and describing cybersecurity work into various roles and areas. 
South Africa, at a national level, should be looking to develop a similar initiative. Government led initiatives around building specific learning centres or training facilities for the development of cyber security skills would also go a long way padding skills development.

Additional encouragement of careers in this field can also be attained through offering tax breaks for students pursuing cyber security studies, or organisations who invest in programmes for cyber security development. 
Perhaps even encouraging the bringing in of talent from outside of our borders, in order to supplement our skills pool as well as increase our knowledge base.

It's a matter of time before South Africa feels the full brunt of being a cybercrime target. We need to act now to begin to address this gap before cyber-crime affects our economy and our reputation.

ITWeb

You Might Also Read: 

Three Most In-Demand Cybersecurity Jobs:

S. Africa’s Model For Cybesecurity:

South Africa: Serious About Cyberwarfare:

« Cyber Attacks Rank Alongside Natural Disasters
Drones: A Crowd-Management Solution »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Hex Security

Hex Security

Hex Security Limited is a specialist Information Assurance (IA) consultancy working with associates and partners to deliver security certification and accreditation support.

National Digital Exploitation Centre (NDEC) - United Kingdom

National Digital Exploitation Centre (NDEC) - United Kingdom

NDEC is a project to create a centre of cyber and digital development and education for the UK. It will offer training in digital practices, cyber security and research.

Workz Group

Workz Group

Workz connects and protects mobile subscribers of today and tomorrow by providing secure removable or embedded SIMs and remote provisioning solutions for consumer, M2M and IOT devices.

UPX Technologies

UPX Technologies

UPX Technologies is one of the largest digital security centers in Brazil providing full protection for data, networks and content.

Kleiner Perkins

Kleiner Perkins

For five decades, Kleiner Perkins has made history by partnering with some of the most ingenious and forward-thinking founders in technology and life sciences.

High Wire Networks

High Wire Networks

High Wire Network’s Overwatch Managed Security Plaform-as-a-Service offers organizations end-to-end protection for networks, data, endpoints and users.

36 Group

36 Group

36 Group's criminal law team, has the experience and specialist knowledge to conduct effectively trials heavily concerned with the growing phenomenon of Cybercrime.

Tapestry Technologies

Tapestry Technologies

Tapestry Technologies supports the Department of Defense in shaping its approach to cybersecurity.

CY4GATE

CY4GATE

CY4GATE was conceived to design, develop and produce technologies and products that are able to meet the most stringent and modern requirements of Cyber Intelligence & Cyber Security.

SnapAttack

SnapAttack

SnapAttack is a collaborative platform that empowers your security team to stay ahead of threats, create robust behavioral analytics for your existing tools, and prove your program's effectiveness.

Oxford Internet Institute - University of Oxford

Oxford Internet Institute - University of Oxford

The Oxford Internet Institute is a multidisciplinary research and teaching department of the University of Oxford, dedicated to the social science of the Internet.

Fireblocks

Fireblocks

Fireblocks is a digital asset security platform that helps financial institutions protect digital assets from theft or hackers.

Mobilicom

Mobilicom

Mobilicom is an end-to-end provider of cybersecurity and smart solutions for drones, robotics & autonomous platforms.

NetHope

NetHope

NetHope is a membership-based organization serving the international nonprofit humanitarian, development, and conservation sector through digital transformation.

BlazeGuard

BlazeGuard

At BlazeGuard, we understand that navigating the complex world of cybersecurity can be challenging. That’s why we make it our mission to simplify the process for you.

PureSoftware

PureSoftware

PureSoftware is a global software products and digital services company that is driving transformation for the world’s top organizations across various industry verticals.