According to the National Audit Office (NAO) a lack of skilled workers is hampering the UK's fight against cyber crime. As reported by the BBC, the NAO warned that the UK faced a current and future cybersecurity
skills gap, with "the current pipeline of graduates and practitioners" unable to meet demand.
, the global leader in information security
expertise, has advised that every company, regardless of type and size, can contribute to fighting cybercrime.
Alan Calder, CEO of IT Governance and cybersecurity guru, says, “Organisations in the UK and globally have an obligation to improve cyber security, not only for their own sake, but for the sake of their customers. This can only be achieved by investing in staff training and by employing qualified professionals. Skills are crucial to cybersecurity.”
At present, qualifications such as CISSP
and ISO27001 certified training
are increasingly sought after.
Further to MP Chi Onwurah’s statement
that “the private sector may be our weak link in effective cyber security” Calder comments:
“Any company which doesn’t have a robust Information Security Management System (ISMS) in place is potentially a weak link. Moreover, its information assets are at a bigger risk from a data breach than those of a company with such a system.”
The information security standard ISO27001
sets out the requirements for implementing an ISMS. Calder argues that it is not the complexity that stops companies from investing in an ISMS, but it’s more about getting their priorities right.
“Cybersecurity is the norm. It has to become a top priority for organisations and a regular on their business agenda. Implementing an ISO27001 information security management system is not so hard if you can draw on knowledge and resources. Therefore training staff is important. Every company should employee at least one qualified information security professional.”
Organisations looking to train staff in information security can access information on everything they need to know on existing information security qualifications at www.itgovernance.co.uk/training.aspx