You might already be doing these activities as part of your strategy plan: researching ways to increase security with emerging technology (one example: blockchain to revise business process), increasing secure mobile access to collaboration apps and infrastructure, training and communicating for preparedness and adoption, and resourcing top talent. We’d like to hear your views on cybersecurity and how it affects your role. Read on and let us know below.
Have we not prepared people in college? Was the pace of change such that we were blindsided by evolving threats? How do you think this could affect your team build-out? Look at the contributing reasons and let us know, particularly as this is a fast-moving and fairly young field:
Limited feeder education pathways
Unrealistic “unicorn” hiring criteria or outdated, traditional requirements
Insufficient pool that lacks diversity
Unqualified or entry-level candidates
Lack of candidate interest, even if qualified
Steps you can take today
Amid this backdrop of skills shortage and the constancy of evolving digital threat, here’s what you can do to prepare effectively against cybersecurity risks.
Outsource short-term. To close the immediate skills gap for expert personnel, bring in vendors or consultants to address needs now until you can work with your HR/recruiting team or a search firm to pinpoint the talent you need.
Reevaluate your job postings – and expectations. Be precise on what you seek. The NICE Framework from the Department of Homeland Security can help define required knowledge, skills, and abilities (KSAs). At a minimum, put the basic requirements on the job description to increase applicant submissions and determine true need for traditional certifications. Also ensure descriptions draw desired applicants by reflecting culture benefits, including flex-time, vacation, remote work, training opportunity, and salary.
Emphasize education. Train yourself and your teams to develop home-grown skills that meet today’s need. Work with local universities to influence curriculum development to grow the future workforce pool. Establish internships, hackathons and “capture the flag” competitions to give students hands-on infosec experience.
Will a cybersecurity talent shortage pose a problem for your company and IT team? Could it affect your career? Let us know below.