Here is a sobering stat: “According to Cybersecurity Ventures, the cost of cybercrime is predicted to hit $8 trillion in 2023 and will grow to $10.5 trillion by 2025.”
If that’s not enough to stop everyone in their tracks, the fact that most organizations feel that they lack the right cybersecurity talent to protect their interests is doubly concerning. In fact, in a “research report published by TechTarget’s ESG division and International Systems Security Association (ISSA), 57% of 489 surveyed ISSA members said their organizations have been affected by the shortage of skilled cybersecurity professionals.”
Further, 44% are saying it is getting worse. With cyberattacks reaching upwards of 8 trillion dollars in damages to company enterprises, we are in a cybersecurity crisis. Finding the right cybersecurity talent is at threat-level red, but what should we be looking for?
Who Comprises the “Right” Cybersecurity Team?
According to Steve Zurier (TechTarget), there are essential skills that companies should look for that incorporate both specialized technical skills coupled with business acumen and those “soft skills” that have become ever so important in technical roles today.
Of the skills he noted, the IT security skills that rise to the top include:
- Application Security Development
- Cloud Security
- Analysis, auditing, and testing skills
- Creativity and effective communication skills
“Application Security Development” skills— otherwise known as the DevSecOps teams— are particularly notable relative to security concerns since that is not inherently a “cybersecurity” role. Yet, experts with DevSecOps skills are critical in implementing secure practices across an organization, for example within its software development initiatives.
This is important because the increased adoption of open-source codes in software development poses significant threats to security. In fact, CSO reports: “At a time when almost all software contains open source code, at least one known open source vulnerability was detected in 84% of all commercial and proprietary code bases examined by researchers at application security company Synopsys.”
From this increased threat we also learned that much of the vulnerable software are lacking the necessary patches that should be applied to fix said issues. However, as CSO also noted, software developers are often so bogged down with the next project that maintaining existing software takes a back-seat. Companies, however, can reevaluate their resources and tech team structures to bring in extra layers of help from developers that will prioritize software monitoring and maintenance.
AI Once Again Emerges as an Imminent Cybersecurity Skill
It begs the question, however, are AI tools a help or a hindrance to cyber protection?
It depends on who you ask. Some professionals feel that the speed and scope of an AI learning module might be able to more quickly identify vulnerabilities because of access to data, thus being able to propose solutions sooner to thwart threats. On the other hand, the smarter the AI systems become by gathering sensitive and proprietary data from any given company, the more risk there could be for potential compromise. If a hacker gets a hold of AI learnings all wrapped up in a neat present, the hard work was already done for them. It reinforces the need for security oversight of the AI cybersecurity tool, another important skill demand for top cybersecurity talent.
Evaluate Varying Skillsets To Build a Cybersecurity Force
There are plenty of resources available that help define the dream team of cybersecurity specialists. A cybersecurity division org chart will often be led by a Chief Information Security Officer (CISO), supported by a capable team of important IT professionals like Cybersecurity Analysts and Architects, Penetration Testers, Security Auditors as well as Security Trainers responsible for generating awareness and policy compliance amongst an entire employee body.
In the face of a perpetual talent cybersecurity skills shortage, however, hiring managers can expand the scope of their search for IT professionals that have acquired foundational skills that easily cross over to a cybersecurity role. The aforementioned software engineer/developer is a great example of pivoting to a role in a cybersecurity division. Likewise, experts note that Data Analysts and IT Support Specialists have transferrable skills in research, analysis, critical thinking, and problem-solving that can support cybersecurity management in various ways.
Work With a Trusted IT Staffing Expert
To Help Plan Your Cybersecurity Team
With access to a large talent pool of IT professionals that possess both the tech knowledge and business skills organizations are looking for, Prosum staffing and recruiting experts can help assess your cybersecurity talent needs and find the team that will ensure your organization’s protection from rising threats in the industry. Request cybersecurity talent today.
