White House Reorganisation Addresses Cyber Workforce Gap

The White House wants to build a single, unified strategy for strengthening the cybersecurity workforce at every agency across government. The White House reorganization plan would force agencies to assess the strength of their cyber workforce and quickly fill the gaps they find.

The Trump administration on Thursday tasked the Homeland Security Department and Office of Management and Budget with creating a governmentwide approach for recruiting and retaining skilled cybersecurity personnel. The order, which came as part of the White House reorganization plan, aims to address the growing shortage of top cyber talent at federal agencies.

“The workforce shortage compounds the government’s challenges in responding to a constantly evolving threat environment and achieving its many IT-dependent missions,” the report said. “The government lacks a comprehensive, risk-derived understanding of which cybersecurity skillsets the federal enterprise needs to develop and which positions are most critical to fill.”

As it stands, each agency is responsible for addressing its own cybersecurity challenges, which the administration said creates “internal competition for talent... that degrade[s] agencies’ ability to defend networks from malicious actors and respond to cyber incidents.” The plan would standardize how agencies assess and meet their cyber needs.

Under the plan, the government would take stock of its entire cyber workforce by this fall using the framework created by the National Initiative for Cybersecurity Education. DHS would then work with agencies to assess their individual skill gaps and prioritize various hiring initiatives by the end of fiscal 2019.

Government has historically struggled to hire top tech professionals, but private sector’s growing demand for cyber talent compounded this problem. Today, the government employs almost five IT specialists over age 60 for each person under 30. A decade ago, the ratio stood slightly below two-to-one.

The private sector usually offers cyber specialists higher salaries and more career mobility than government, but the new approach looks to remove many of the obstacles that keep the best and brightest out of Washington.

The White House plan would allow DHS to create a new hiring track that would let it bring on cyber talent faster and offer those hires higher salaries. After working out the kinks in the Cyber Talent Management System, DHS would work to expand the system across all federal agencies.

OMB and DHS would also work to streamline the security clearance approval process for cyber professionals, look for ways to give employees the ability to move more quickly between different positions and agencies and determine whether creating short-term positions could help government respond quickly in the event of a major cyber incident.

The two agencies would also work with the Office of Personnel Management to create training programs to equip the current IT workforce with the skills to fight the latest digital threats.

Trump's reorganization plan involves more than just cybersecurity and workforce issues. It also includes proposals to digitize the government and improve federal customer experience, among others.

Nextgov:

You Might Also Read:

Are US Federal Cyber Workers Good Enough?

« Cybrary and Cybersecurity Collaborative Form New Strategic Partnership
Using Machine Learning To Spot Photoshopped Images »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Compass Security

Compass Security

Compass Security is a specialist IT Security consultancy firm based in Switzerland. Services include pentesting, security assessments, digital forensics and security training.

Basis Technology

Basis Technology

Basis Technology provides software solutions for text analytics, information retrieval, digital forensics, and identity resolution.

Introspective Networks

Introspective Networks

Introspective Networks (IN) is a Cybersecurity company focusing on securing data in the network and automating knowledge work to decrease vulnerability points to critical infrastructure.

GraVoc

GraVoc

GraVoc is a technology-consulting firm committed to solving business problems for customers through the development, implementation, & support of technology-based solutions.

Spherical Defense

Spherical Defense

Spherical Defense offers an alternative approach to WAFs and first generation API security tools.

Ritz

Ritz

Ritz is the largest holistic pure-play cyber security solutions provider in Myanmar.

IberLayer

IberLayer

IberLayer is the company behind the Email Guardian service, a cloud based Email Total Protection system that filters and blocks email threats.

oneM2M

oneM2M

oneM2M is a global organization creating a scalable and interoperable standard for communications of devices and services used in M2M applications and the Internet of Things.

CyberCX

CyberCX

CyberCX provides services from strategic consulting, security testing and training to world-class managed services and engineering solutions.

archTIS

archTIS

archTIS specialises in the design and development of products, solutions and services for secure information sharing and collaboration.

Lionfish Cyber Security

Lionfish Cyber Security

Lionfish Cyber Evolution & Empowerment Model™ empowers SMBs to prepare and protect themselves against cyber threats using a unique combination of on-demand training, support and managed services.

RhodeCode

RhodeCode

RhodeCode is an open source repository management platform. It provides unified security and team collaboration across Git, Subversion, and Mercurial.

ITSEC Asia

ITSEC Asia

ITSEC Asia works to effectively reduce exposure to information security threats and improve the effectiveness of its clients' information security management systems.

Com Olho

Com Olho

Com Olho provides the measurement, analytics, quality assurance, and fraud protection technologies brands need for their business and customers.

Plerion

Plerion

Plerion is an all-in-one Cloud Security Platform that supports workloads across AWS, Azure, and GCP delivering cloud security posture management, workload security, data security and more.

ConductorOne

ConductorOne

ConductorOne is building the identity security platform for the modern workforce.