Four out of five organisations can’t find qualified staff to fill cyber security positions, according to CyberEdge’s 2018 Cyberthreat Defense Report.
Although this figure is alarmingly high, CyberEdge notes that the skills gap decreased by ten percentage points compared to its 2017 report.
The education sector (87.1%) is the most affected, followed by telecommunications and technology (85.1%), manufacturing (81.5%) and finance (81.4%).
The report also breaks down the job roles that organisations are having the most trouble filling:
- IT security administrator (32.3%)
- IT security analyst/operator/incident responder: (27.9%)
- IT security architect/engineer (27.6%)
- Application security tester (22.1%)
- IT security/compliance auditor (19.5%)
An organisation’s size has little effect on its ability to fill positions, the report found.
Finding qualified staff
The slight decrease in the cyber skills gap suggests that organisations’ plans to find qualified professionals are working, if not less effectively than they might have hoped. A 2017 survey by (ISC)2 found that hiring managers were exploring new recruitment strategies and attempting to entice previously unqualified people with the promise of a good salary and opportunities for career growth.
The report states: “Individuals with non-technical previous careers often rise to become key decision makers in their organizations: globally, 33% of executives and C-Suite professionals began in a previous non-technical career.”
It adds: “It will be important, if not essential, to consider the relevant educational foundations, training and professional development opportunities that support the breadth of people with potential to enter the field in order to fill the worker shortage.”
If you’re interested in gaining the required skills to enter the information security field, you should consider enrolling on one of our ISO 27001 training courses. ISO 27001 is the international standard that describes best practice for an information security management system (ISMS). An ISO 27001 qualification demonstrates that you have the knowledge and practical skills to manage data security.
Train with IT Governance and you’ll get practical and interactive help from experienced practitioners. You can choose from a range of courses and learn in a classroom or online.