sb-nz logo
Story image

One-third of A/NZ business looking to hire security-specific skills - CompTIA

10 May 2019

Thirty-three percent of businesses in Australia and New Zealand (A/NZ) are looking to hire security-specific skills, according to a new report from CompTIA. 

In total, more than three-quarters of survey respondents indicated that their organisations were looking to improve security skills.

A mix of methods were reported including: offering security training for current employees (37%); hiring people with security-specific skills (33%); and offering security certification for current employees (28%). 

Furthermore, 20% are exploring the use of third parties and outsourcing security while 14% are looking to expand their use of third parties. 

According to AustCyber’s Australia’s Cyber Security Sector Competitiveness Plan 2018, a shortfall in Australia’s cybersecurity workforce may already be costing the nation more than $400 million in lost revenue and wages.

The local infosec sector is already short some 2,300 workers, with Australia expecting to need up to 17,600 additional cybersecurity professionals by 2026.

The volume and variety of cyber attacks are some of the primary factors contributing to the security skills shortage.

Today’s technology stack contains a diverse set of components, and any of these can be vulnerable. A breach in any one element could disrupt operations, leak data, or create access to other parts of the system. 

A range of skills is therefore needed to secure modern infrastructure, respond to incoming threats, and ensure proper operations.

CompTIA A/NZ Channel Community executive council member and Datto APAC sales director James Bergl says, “Given the current skills gap, the importance of offering security training and certification will be more important than ever in equipping the future workforce.

“It will also inspire loyalty by showing employees a willingness to invest in their career development, which ultimately benefits the business long-term.
 
“For channel businesses, the skills gap may lead to an increase in outsourced security as A/NZ businesses are left with few other options. Heavy competition from competing channel businesses will mean that a strong sense of loyalty will be required for the channel to retain its talent.” 

While skills growth is the most direct way to improve the effectiveness of a security team, there are other steps organisations can take to give a security team the best chance of success. 

Bergl says, “From a cultural perspective, understanding that IT is now a strategic activity drives a new mindset and behaviour.

“Likewise, new attitudes and practices must emerge as security becomes a separate operational function, and quickly integrating a new mentality throughout an organisation will help security efforts move forward. 

“The most critical aspect of modern security for an organisation to grasp is that the objective is no longer to build the ideal defence. Implementation and maintenance of a secure perimeter is still a necessary task, but it is no longer sufficient. 

“Cloud computing and mobile devices have introduced workflow and data storage techniques that require new models, and the incessant nature of attacks makes total prevention an unreasonable goal,” he says.

“As such, companies need more proactive methods to ensure a strong security posture including retaining and upskilling their security workforce.”

Story image
SecOps NZ employee receives highest level of certification for Tenable
SecOps NZ’s principal security consultant Carl Pruvis has been awarded an elite Tenable certification for technical mastery, which helps SecOps NZ clients manage, measure and reduce cyber risk. More
Story image
DDoS attacks spike thanks to COVID-19 lockdowns, Kaspersky finds
Kaspersky experts believe the rise in malicious activity can be attributed to the impact of COVID-19, as both cybercriminals and their targets have had to reconsider their holiday plans. More
Link image
Nine developer enablement practices to achieve DevOps at enterprise scale
Senior software engineering leader with experience at multiple Fortune 500 companies shares how a metrics-driven mindset can dramatically improve software quality and enable DevOps at enterprise scale.More
Story image
Almost 70% of APAC consumers willing to trade privacy for better UX
Respondents from China (82%), India (79%) and Indonesia (79%) are the most willing to share their data, with respondents from Japan (43%), Australia (50%) and Singapore (58%) being the least likely to trade data for more seamless experiences.More
Story image
Claroty and Check Point announce partnership to secure industrial control networks
The collaboration is based around an integration between Claroty’s Continuous Threat Detection (CTD) and Check Point’s recently released IoT Protect solution. More
Story image
Tanium and Google Cloud bring greater security to distributed IT
“This joint solution with Chronicle gives Tanium customers access to massively scalable analytics and investigation capabilities far beyond that of other endpoint detection and response point tools."More