The cyber security industry faces a massive problem: there are simply not enough highly-skilled cyber security professionals. This is already a massive issue, but fast-forward to 2020 and the shortfall is expected to reach 1.5 million (2015 (ISC)2 Global Information Security Workforce Study conducted by Frost and Sullivan).
The problem is twofold. First, cyber security concerns now permeate our daily lives, and all organisations are aware of cyber threats, with a third citing them as a “top risk” and 88% stating that cyber security is on the board’s agenda (PwC Information security breaches survey). This creates demand. Everyone is looking for experienced cyber security staff, and they want them now.
The second part of the problem is that cyber security threats change at an astonishing rate. Furthermore, as organisations begin to understand that cyber security is a business issue that affects everyone in the organisation, the scope of cyber security professionals’ roles are far broader. Once, they would have been consigned to work with the IT team, implementing controls and defences that the rest of the organisation was probably unaware of. Now it’s a top-to-bottom issue: it’s not just your cyber technology defences, but the processes you implement and the training you give all staff.
Once more unto the Breach – Managing information security in an uncertain world addresses this exact issue and is a really great read for those who want to understand the changing role and challenges that information security managers face.
So, how are we going to address the 1.5 million shortfall in cyber security staff?
Let’s be clear: career prospects and salaries for those embarking on a career in cyber security are pretty impressive. I think the industry just needs to shout louder about what a fantastic time it is to be involved with cyber security.
Take a look at the stats below from www.itjobswatch.co.uk – they re-enforce the fantastic salaries (and the fact they are increasing fast) and the availability of cyber security jobs.
Source: www.itjobswatch.co.uk (accurate as of 4/8/2015).
IT qualifications are the gateway to having your pick of the cyber security jobs. Need more information about what might be suitable for you? Sure thing:
CISA – ISACA’s globally accepted standard of achievement among information systems (IS) audit, control and security professionals. Find out more >>
CISM – ISACA’s highly sought-after information security manager qualification. Find out more >>
CISSP – (ISC)²’s premier qualification, a prerequisite for anyone developing a senior career in information security. Find out more >>
ISO 27001 – The world’s leading information security management system standard. As more organisations look to adopt the standard, ISO 27001 auditors and implementers are in great demand. Find out more >>
PCI DSS – All organisations that process card payments must comply with the PCI DSS. Develop the skills to plan, implement and maintain a PCI DSS programme. Find out more >>
Risk management – Identifying risks and implementing cyber security based on a risk assessment is now a critical discipline for all organisations. Find out more >>
There has never been a better time to develop your career in cyber security. As an industry we need to shout about it.
At IT Governance, we have over a decade of experience helping individuals acquire cyber security skills and develop their careers.
If you need some advice on how to progress your career, then call us today on 0845 070 1750.