US Needs To Cultivate Its Cyber Workforce

In compliance with a 2017 presidential executive order, the Department of Commerce and the Department of Homeland Security last week jointly released the report, in which they share their assessment of recent initiatives to educate, train and grow American's cybersecurity talent pool.

The agencies cited multiple deficiencies in this regard, including a lack of relevant cybersecurity education programs in the corporate world; a shortage of cyber-savvy teachers across all levels of education; prohibitive and inefficient hiring/onboarding practices; and a lack of reliable data on cybersecurity workforce position needs.

To combat such issues, the report's authors have recommended developing an "ambitious vision and action plan-of-attack;" executing a "high-profile national Call to Action" to mobilize workers toward cyber needs; attracting more women, minorities, veterans and young students; budgeting for high-quality education and workforce development programs; and providing cyber training to employees in traditionally non-cyber roles; 

The report also recommends that both private and public-sector organizations take steps to improve their learning environments, align education and training efforts with their cybersecurity workforce needs, and establish metrics and tools that help evaluate the effectiveness of their cyber workforce investments.

As further proof of America's ongoing shortage in cyber talent, new statistical findings show that there were 301,873 cybersecurity job openings in the U.S. in the 12-month span from April 2017 and March 2018.

Of these openings, 13,610 were in the public sector, according to numbers issued today by CyberSeek, a free cybersecurity career and workforce resource, and a joint development of technology industry association COmpTIA and labor market analytics firm Burning Glass Technologies. Moreover, 194,224 openings were in the category of "Operate and Maintain" -- meaning jobs involving the support, administration and maintenance of IT systems, as opposed to strictly cyber roles.

During this same time span, the total number of employed members of the U.S. cyber workforce was 768,096. That means for every cyber job opening, there were only 2.5 filled cyber positions, compared to 6.5 filled positions per job opening when looking at all fields of work.

CyberSeek further reports that the metro areas with the largest absolute number of cyber job openings in the aforementioned time period were Washington D.C. (43,200), New York (19,993) and Chicago (11,464).

"The cybersecurity talent shortage is widespread, impacting all 50 states," said Matthew Sigelman, CEO at Burning Glass Technologies, in a press release. "In every state, the employed cybersecurity workforce would have to grow by over 50 percent to align with the market average supply and demand ratio."

CyberSeek is also a partner with the National Initiative for Cybersecurity Education (NICE), an initiative from the Commerce Department's National Institute of Standards and Technology (NIST).

SC Media:

 

« Backlash: Facebook's Data-Sharing With Chinese Firms
Goldman Sachs Offers A Cyber War Games Product »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

NCX Group

NCX Group

NCX Group is committed to helping customers identify and mitigate the risks inherent in today’s interconnected environments and business processes.

Appdome

Appdome

Appdome is the industry's first mobile integration as a service company, providing solutions for enterprise mobility and mobile application security.

Synack

Synack

Synack provides a hacker-powered intelligence platform that uncovers security vulnerabilities that often remain undetected by traditional pen testers and scanners.

NSEIT

NSEIT

NSEIT offers end-to-end Information Technology products, solutions and services including cybersecurity to organizations in the financial sector.

CYE

CYE

Utilizing data, numbers, and facts, CYE helps security leaders know what business assets are at risk and execute cost-effective remediation projects for optimal risk prevention.

Resistant AI

Resistant AI

Resistant AI protects against evolving online fraud. We connect the dots to provide a new layer of trust and performance for our clients’ systems.

Hold Security

Hold Security

Hold Security works with companies of all sizes to provide unparalleled Threat Intelligence services that actually make a difference.

Voodoo Security

Voodoo Security

Voodoo Security is a specialized information security consulting firm focused on security assessments, risk and compliance analysis, and cloud security.

Gula Tech Adventures

Gula Tech Adventures

Gula Tech Adventures invests in companies and nonprofits that help close the gap in needed technology and workforce to defend the country in cyberspace.

Let's Encrypt

Let's Encrypt

Let’s Encrypt is a free, automated, and open digital certificate authority, run for the public’s benefit. It is a service provided by the Internet Security Research Group (ISRG).

Ascent Cyber

Ascent Cyber

Ascent Cyber provide simple and stress-free solutions to protect your business and its customers from the worries and costs of cybercrime.

SideChannel

SideChannel

At SideChannel, we match companies with an expert virtual CISO (vCISO), so your organization can assess cyber risk and ensure cybersecurity compliance.

Cytex

Cytex

Cytex is the All-in-One solution for SMB data protection & compliance needs.

Nihka Technology Group

Nihka Technology Group

Nihka offers full end-to-end ICT solutions from business optimisation, data centre modernisation, cloud connection and management, and ICT security.

National Cybersecurity Competence Center (NC3) - Luxembourg

National Cybersecurity Competence Center (NC3) - Luxembourg

The purpose of the is to strengthen the Country's ecosystem facing cyber Luxembourg National Cybersecurity Competence Centerthreats and risks.

Anagram

Anagram

Anagram is the world’s first human-driven security awareness training platform that delivers real results.