View | Alternative ways to overcome the cybersecurity skills gap

The demand for cyber security experts is increasing by the day as the industry faces a skills shortage. According to a May 2023 report, India had approximately 40,000 open cybersecurity positions, reflecting a 30% gap in demand and availability. With the highly dynamic nature of the digital environment, the frequency and sophistication of cyber attacks have been increasing. It imposes an increasingly urgent need for strong cyber security.

Understanding the cybersecurity skills gap

The cybersecurity skills gap presents a well-documented challenge, where demand for skilled professionals outstrips supply, creating shortages in both numbers and specialized expertise. As cyber threats grow in sophistication, specific skills become increasingly crucial, but better trained individuals are still needed to fill such important positions.

The ISACA State of Cybersecurity 2023 report indicates that companies worldwide have found colossal skills gaps in areas such as cloud computing (50%), soft skills (43%), security controls (43%), network-related topics (41 ). %) and model analysis (35%).

At the same time, the same report indicates strong technical skills demanded by cybersecurity professionals in cloud computing (46%), penetration testing (42%), forensics (38%), identity and access management (38%) and data protection (38). %).

This proportional increase in skills gaps in a few specific areas and an increase in demand for those roles only means that there is a need for companies to address the issue.

Factors contributing to the skills gap

1. Rapid technological advances: Ever-evolving technology requires continuous learning and adaptation. Today’s workforce is overwhelmed by these rapid changes. With increasing technological advancement, the requirement for the number of skilled professionals to match the pace is outstripping the available talent pool.
2. Lack of educational resources: Many educational institutions lack specialized training for most modern cybersecurity roles.
3. High stress and exhaustion: The demanding nature of cybersecurity jobs leads to greater stress and burnout, ultimately driving professionals out of the industry.
4. Underrepresentation: The lack of diversity in the cybersecurity workforce limits the potential talent pool, with women and minorities particularly underrepresented.

Mind the Gap

Ignoring the gap leaves an organization vulnerable to financial loss, reputational damage and diminished customer confidence. Cyber ​​attacks on vital infrastructure, healthcare systems and other critical service industries have a devastating impact on society.

This skills gap requires an investment in people, processes and technology. Research indicates that technical education and certification offer a legitimate path to fill this gap that affects national security and threatens social welfare.

Bridging the cybersecurity skills gap

A multi-faceted approach is needed to close the cybersecurity skills gap:

1. Investments in the training and improvement of existing staff: Organizations should focus on ongoing training and professional development among existing employees. This will include certification programs, attendance at relevant industry conferences and access to the latest gadgets and technology. This is an attempt to develop a pool of highly professional people who will help close the cyber security skills gap.
2. Team up with educational institutions: Connect academic programs with industry needs through strategic alliances with universities and colleges. Internships, co-op programs, and updated curricula will provide hands-on experience and current industry standards.
3. Automate your cybersecurity processes: It focuses on the industry technology will address the skills challenge in a big way. An organization should use automation, machine learning and artificial intelligence to augment human resources, thus freeing the people involved to indulge in more creative and meaningful work. It will increase job satisfaction and make the field of cyber security even more rewarding. This will help professionals work in high-impact jobs, thereby improving the retention of professionals and the value proposition offered by the workforce in this industry.
4. Raising awareness of cybersecurity careers: Outreach programs for high school students, job fairs, and mentoring programs would bring a number of candidates from diverse backgrounds to enter and work in the industry. The impact and importance of cyber security careers is sure to inspire future professionals.

Future perspective

A recent one Gartner reportt predicts that by 2025, lack of talent and/or human failure will result in a nearly 50% increase in cybersecurity incidents. Therefore, the cybersecurity workforce must evolve with the growing threat landscape.

While the skills gap creates a major problem, it also provides room for innovation and growth. Since technology and technology readiness are major factors contributing to the skills gap, organizations should develop ways to use technology to their advantage.

Platforming as a practice is growing rapidly in the cybersecurity space. Organizations benefit from bundling multiple products and services into a single data warehouse and then running AI on the entire data set for better security results in real-time. Another approach may be to adopt AI-based cybersecurity solutions that use generative AI to combat AI. In this way, security operations centers (SOCs) can improve security, simplify operations, and protect enterprise applications and data from sophisticated attacks.

A proactive and broad perspective in industry training, education and technology will help produce a strong workforce, whether at the early or mid-career levels, ready to meet whatever the future holds. Bridging this gap through strategic investments in training, collaboration, automation and awareness can move us significantly closer to a secure digital future.

— Huzefa Motiwala is director of systems engineering, India and SAARC, at Palo Alto Networks.