New Data Highlights Cyber Security Skills Shortage

A new report shows the extent to which a shortage in cyber security skills is affecting businesses. Talent acquisition firm Stott and May spoke to cyber security leaders across the US and Europe, and found that 76% of businesses report a cyber security skills gap in their company.

The report showed a growing awareness amongst CSOs about the increasing importance of cyber security, with 54% describing it as a ‘strategic priority.’ But a lack of available talent is preventing many businesses from implementing their cyber security strategies.

Internal skills shortages are part of the problem, with 39% of the study’s participants viewing this as the biggest boundary to implementing strategy. Yet 72% also claimed that they struggled to source the required cyber security talent anywhere on the market.

Breaking the figures down by region, the report showed that the issue was most pronounced in the US, with 81% of cyber security leaders reporting a struggle to find talent. The figure in the UK was 72%, and 60% in mainland Europe.

The research also touches upon the growing challenges faced by cyber security professionals, such as the move towards cloud computing. 54% of the respondents claimed that they expect the move towards the cloud to lead to more security incidents. Within the report, Jim Rutt, CISO at Dana Foundation, warns that few businesses fully appreciate the level of threat associated with cloud and other emerging technologies. As Rutt states:

‘The biggest challenge for both security and operational leaders in IT is the perception that you can just take what you have on-premise, migrate it to the cloud and you can keep the same controls in place and everything will work out fine. CISOs need to get a lot more educated on what they truly need from a defensive posture in a cloud environment.’

Other issues highlighted in the report by Rutt include insider threat, API integration and IoT security.

The report also demonstrates some of the ways that larger firms are attempting to plug the skills gap. Upskilling internal candidates and leaning on AI and machine learning to free up existing cyber security talent has been fruitful for some medium and large enterprises. However, the findings also demonstrate that 52% of cyber security leaders show a preference for sourcing the right skills on the open market.

To access all the insights from Stott and May’s cyber security research, download the Cyber Security in Focus 2020 report here.

Infographic courtesy of www.stottandmay.com

Security Industry Association Announces New SIA Women in Security Scholarship Opportunity

“The SIA Women in Security Forum works to grow and retain leaders in the security industry,” said Gloria Salmeron, director of human resources at Brivo and co-chair of the scholarship committee. “With the addition of this new scholarship, we look forward to helping bring opportunities for further education and advancement to as wide a spectrum of people as possible and inviting individuals to participate in the Women in Security Forum.”

Tried and Tested: Can Open Source Boost CCTV into the 21st Century?

With funding from the UK’s innovation agency, Innovate UK, Zircon Software Ltd is working to find out whether security surveillance systems and associated analytics can work in a station environment without disrupting the rail network. To achieve this, Zircon are planning to utilise advanced video analytics, taking functional open source Machine Learning libraries wrapped in […]

French medics need bodyguards for 300 metre commute after spike in violent attacks

The capital’s iconic station is just 300 meters from the hospital, yet employees do not feel safe enough to make the journey on foot alone between the hours of 6pm and 10pm.

Industry News At A Glance March 2020

We cast our eye over the main stories impacting the security industry. Here’s what’s appeared on the radar since the last issue.

Training for Tactical Shooting

Handguns are meant for close-quarter shooting. Think about it; if someone is going to attack, kidnap or rob you on the street, they are going to be close, within conversational range. Now, look around your home or business and see what the maximum distance is that you would have a clear shot at a criminal or terrorist, for most this will be less than 10 yards/meters. This places emphasis on close quarter instinctive shooting over precision target shooting. As part of your training practice for long distance shoots (for handguns, this means over 25 yards), you should try hitting targets out to and over 100 yards. This will improve your handgun skills and show you your capabilities and limitations, but the emphasis should be on close quarter instinctive shooting.

Counter-Ambush Tactics for Security Professionals – Part 2

The first two of these tenets involve soft skills which are sometimes referred to as Protective Intelligence (PI) and include situational and tactical awareness skills (route analysis and surveillance detection). The third tenet, Defend, requires hard skills such as the use of firearms and security driving. These hard skills may be required if we were unable to prevent or avoid an attack, and we end up in a situation where we have to survive an ambush. Continuing where we left off in Part One, we will finish covering some of the soft skills involved in Protective Intelligence and then move on to discuss the hard skills.

The Practical Application of Military Physical Training

If you take the four areas that are part of the traditional military model: gymnastics/calisthenics (bodyweight exercise), outdoor obstacle courses (moving efficiently through a range of environments), combat sports (boxing, grappling etc), speed marching (bipedal locomotion); these intrinsically include the main focus physical qualities: mobility, strength, reaction speed, coordination, balance and cardiorespiratory function. If these areas are incorporated into a physical fitness programme, treated as a skill and kept in the majority at a low/medium intensity with bouts of high intensity, the result will be a well-rounded human capable of thriving in the diversities of the modern life.

Hiding from OSINT

It often comes as a surprise just how much is available, and the nefarious uses it can be put to. OSINT can be applied towards defensive purposes, but we will be looking only at malicious purposes. One of the biggest challenges of OSINT is not merely recognising it as a threat, but encouraging the behavioural change needed to protect against it widely enough. It is not enough simply for a principal to stop posting Instagram pictures of their travels in order to hide them – their colleagues, friends, family, and employees also need to be aware of the need to take care with information which could be misused.

New Data Highlights Cyber Security Skills Shortage

Buy The Latest Issue

Sign Up For News and Updates

Leave a Reply Cancel reply