Every company can contribute to the Government’s call for ‘more skilled cyber-crime fighters’, says IT Governance

18/02/2013

According to the National Audit Office (NAO) a lack of skilled workers is hampering the UK's fight against cyber crime. As reported by the BBC, the NAO warned that the UK faced a current and future cybersecurity skills gap, with "the current pipeline of graduates and practitioners" unable to meet demand.
 
IT Governance, the global leader in information security expertise, has advised that every company, regardless of type and size, can contribute to fighting cybercrime.
 
Alan Calder, CEO of IT Governance and cybersecurity guru, says, “Organisations in the UK and globally have an obligation to improve cyber security, not only for their own sake, but for the sake of their customers. This can only be achieved by investing in staff training and by employing qualified professionals. Skills are crucial to cybersecurity.”
 
At present, qualifications such as CISSP, CISA, CISM, CGEIT and ISO27001 certified training are increasingly sought after.
 
Further to MP Chi Onwurah’s statement that “the private sector may be our weak link in effective cyber security” Calder comments:
 
“Any company which doesn’t have a robust Information Security Management System (ISMS) in place is potentially a weak link. Moreover, its information assets are at a bigger risk from a data breach than those of a company with such a system.”
 
The information security standard ISO27001 sets out the requirements for implementing an ISMS. Calder argues that it is not the complexity that stops companies from investing in an ISMS, but it’s more about getting their priorities right.
 
“Cybersecurity is the norm. It has to become a top priority for organisations and a regular on their business agenda. Implementing an ISO27001 information security management system is not so hard if you can draw on knowledge and resources. Therefore training staff is important. Every company should employee at least one qualified information security professional.”
 
Organisations looking to train staff in information security can access information on everything they need to know on existing information security qualifications at www.itgovernance.co.uk/training.aspx.
This website uses cookies. View our cookie policy