White House Reorganisation Addresses Cyber Workforce Gap

The White House wants to build a single, unified strategy for strengthening the cybersecurity workforce at every agency across government. The White House reorganization plan would force agencies to assess the strength of their cyber workforce and quickly fill the gaps they find.

The Trump administration on Thursday tasked the Homeland Security Department and Office of Management and Budget with creating a governmentwide approach for recruiting and retaining skilled cybersecurity personnel. The order, which came as part of the White House reorganization plan, aims to address the growing shortage of top cyber talent at federal agencies.

“The workforce shortage compounds the government’s challenges in responding to a constantly evolving threat environment and achieving its many IT-dependent missions,” the report said. “The government lacks a comprehensive, risk-derived understanding of which cybersecurity skillsets the federal enterprise needs to develop and which positions are most critical to fill.”

As it stands, each agency is responsible for addressing its own cybersecurity challenges, which the administration said creates “internal competition for talent... that degrade[s] agencies’ ability to defend networks from malicious actors and respond to cyber incidents.” The plan would standardize how agencies assess and meet their cyber needs.

Under the plan, the government would take stock of its entire cyber workforce by this fall using the framework created by the National Initiative for Cybersecurity Education. DHS would then work with agencies to assess their individual skill gaps and prioritize various hiring initiatives by the end of fiscal 2019.

Government has historically struggled to hire top tech professionals, but private sector’s growing demand for cyber talent compounded this problem. Today, the government employs almost five IT specialists over age 60 for each person under 30. A decade ago, the ratio stood slightly below two-to-one.

The private sector usually offers cyber specialists higher salaries and more career mobility than government, but the new approach looks to remove many of the obstacles that keep the best and brightest out of Washington.

The White House plan would allow DHS to create a new hiring track that would let it bring on cyber talent faster and offer those hires higher salaries. After working out the kinks in the Cyber Talent Management System, DHS would work to expand the system across all federal agencies.

OMB and DHS would also work to streamline the security clearance approval process for cyber professionals, look for ways to give employees the ability to move more quickly between different positions and agencies and determine whether creating short-term positions could help government respond quickly in the event of a major cyber incident.

The two agencies would also work with the Office of Personnel Management to create training programs to equip the current IT workforce with the skills to fight the latest digital threats.

Trump's reorganization plan involves more than just cybersecurity and workforce issues. It also includes proposals to digitize the government and improve federal customer experience, among others.

Nextgov:

You Might Also Read:

Are US Federal Cyber Workers Good Enough?

« Cybrary and Cybersecurity Collaborative Form New Strategic Partnership
Using Machine Learning To Spot Photoshopped Images »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Authorize.Net

Authorize.Net

Authorize.Net is a Payment Gateway which provides the complex infrastructure and security necessary to ensure fast, reliable and secure transactions.

Magal Security Systems (Magal S3)

Magal Security Systems (Magal S3)

Magal Security Systems is a leading international provider of integrated solutions and products for physical and cyber security, safety and site management.

GlobalPlatform

GlobalPlatform

GlobalPlatform’s specifications are highly regarded as the international standard for enabling digital services and devices to be trusted and securely managed throughout their lifecycle.

Innovent Recycling

Innovent Recycling

Innovent Recycling provides a secure IT recycling & data destruction service to all types of organizations across the UK.

Calypso AI

Calypso AI

Calypso AI build software products that solve complex AI risks for national security and highly-regulated industries.

INFRA Security & Vulnerability Scanner

INFRA Security & Vulnerability Scanner

INFRA is a powerful platform with an easy interface for any kind of Ethical Hacking, from corporate monitoring and VAPT (vulnerability assessments and penetration testing) to military intelligence.

WolfSSL

WolfSSL

wolfSSL is an embedded SSL/TLS library providing secure communication for IoT, smart grid, connected home, routers, applications, games, phones, and more.

Cyber Management Alliance

Cyber Management Alliance

Cyber Management Alliance is closing the divide in cyberspace by bringing together the best qualities of thought leadership and operational mastery of cyber security management.

RMRF Tech

RMRF Tech

RMRF is a team of cybersecurity engineers and penetration testers which specializes in the development of solutions for early cyber threat detection and prevention.

LimaCharlie

LimaCharlie

LimaCharlie gives security teams full control over how they manage their security infrastructure. Get full visibility, build what you want, control your data, get the security capabilities you need.

CoreStack

CoreStack

CoreStack helps enterprises overcome cloud challenges such as ever growing security risks, stringent regulatory compliance needs and operational complexities.

HashDit

HashDit

HashDit products and services focus on helping build a safe ecosystem for both protocol users and smart contract developers on BNB Chain.

Infinavate

Infinavate

Infinavate Fort CyberVault offers end-to-end services that comprehensively responds to the organization’s information security and privacy needs.

Kolide

Kolide

Kolide ensures that if a device isn't secure, it can't access your apps.

Adaptiva

Adaptiva

Adaptiva, the autonomous endpoint management company, delivers the fastest way to patch and manage endpoints at scale.

SOC-E

SOC-E

SOC-E is a leading technology provider for high-availability and deterministic networking, sub-microsecond synchronization and cybersecurity solutions for critical sectors.