Each month, we ask Fuel members to weigh in with their opinions on the Cybersecurity Question of the Month, and we’re sharing their answers here.
Andy Kelly, a senior security architect, is a brand new member of Fuel. Andy shared his thoughts on the most recent Cybersecurity Question of the Month.
A new report from Cybersecurity Ventures estimates there will be 3.5 million unfilled cybersecurity jobs by 2021, up from 1 million openings last year. In 2017, the U.S. employs nearly 780,000 people in cybersecurity positions, with approximately 350,000 current cybersecurity openings, according to CyberSeek, a project supported by the National Initiative for Cybersecurity Education (NICE), a program of the National Institute of Standards and Technology (NIST) in the U.S. Department of Commerce.
With growth in cyber crimes hitting all industries and businesses of all sizes, companies need to start making investments in hiring new security talent and improving infrastructure.
How do you think organizations should approach closing the cybersecurity skills gap? What areas would you recommend cybersecurity professionals focus on as part of their continuing education efforts?
Andy: Maybe someone needs to come up with more meaningful qualifications than those available today.
Apart from specific vendor product certification, there are very few courses and certifications that are useful to an employer to select candidates for roles.
This is a problem today and even more of a problem in relation to this question and the ticking time bomb that it represents.
About our contributor:
|Andy Kelly, a senior security architect and Fuel member, is based in the UK|
Check Out Our Next Cybersecurity Question of the Month
For many, the ability to build effective countermeasures can be limited by a number of factors—such as having the right resources in place. However, another limitation is also knowing how to effectively separate fact from fiction. Many cyber security "myths" tend to still be prevalent for organizations today.
What are the most common cyber security myths that you have had to combat within your organization and what approaches have worked best?