{"id":861,"date":"2024-01-22T11:48:24","date_gmt":"2024-01-22T16:48:24","guid":{"rendered":"https:\/\/domainsure.com\/?p=861"},"modified":"2024-01-22T11:48:24","modified_gmt":"2024-01-22T16:48:24","slug":"solving-the-cybersecurity-skill-gap-myth","status":"publish","type":"post","link":"https:\/\/domainsure.com\/news\/solving-the-cybersecurity-skill-gap-myth\/","title":{"rendered":"Solving the Cybersecurity \u201cSkill Gap\u201d Myth"},"content":{"rendered":"

For the past several years, we have heard one prevailing narrative in the world of cybersecurity: there\u2019s a significant skill gap. Therefore, we have a labor shortage.\u00a0<\/span><\/p>\n

Current data from <\/span>CyberSeek<\/span><\/a> indicates a staggering 663,434 cybersecurity job openings in the U.S., starkly contrasted by an existing workforce of just over 1.1 million professionals. This disparity suggests that businesses might be operating with only about two-thirds of the cybersecurity skills they need. This concern is further proved across various sectors, with a mere 14-25% of leaders in fields like banking, public sector, energy, and insurance expressing confidence in their cybersecurity talent. The most notable top-of-mind solutions come from global think tanks like the <\/span>World Economic Forum<\/span><\/a>. They are promoting solutions like greater collaboration(information sharing) between governments and private organizations, more women in cybersecurity, and increased training. However, a closer examination reveals a more nuanced, and age-old challenge.\u00a0<\/span><\/p>\n

A high rate of data breaches \u2013 <\/span>88%, to be precise<\/span><\/i><\/a> \u2013 are not due to a lack of skills but rather stem from employee mistakes, phishing scams, and social engineering. The issue is compounded by several factors such as generational differences in admitting errors and susceptibility to phishing scams. Younger employees, for instance, are more likely to fall for phishing, while older employees often hesitate to report mistakes.<\/span><\/p>\n

So, in some private organizations, it may be true to say there\u2019s a shortage of cybersecurity professionals. But for the majority of cybersecurity threats, it’s human error exploited through phishing scams.\u00a0<\/span><\/p>\n

The solution lies not solely in filling the skill gap but in addressing (and reducing the root cause): human error. If private organizations can reduce the number of times hackers communicate with employees and clients, then they are effectively reducing the \u201cskill gap,\u201d and killing the argument for the invasion of privacy and increased government spending. Here, better cybersecurity emerges as a key solution to mitigate the risks associated with these human errors.<\/span><\/p>\n

 <\/p>\n

Understanding the Skill Gap<\/b><\/h2>\n

The narrative of a cybersecurity skill gap has gained significant traction in recent years, informing most people to imagine an industry struggling to keep pace with the increasing demands of digital security. This perceived gap is often highlighted as a major vulnerability in the cybersecurity defenses for public and private organizations. The \u2018Achilles Heel’ of the problem seems to be job openings (<\/span>which many international organizations argue DEI ought to provide<\/span><\/a>), something that is assumed organizations cannot solve for themselves.<\/span><\/p>\n

The <\/span>World Economic Forum<\/span><\/a> writes: <\/span>\u201cGiven the <\/span><\/i>global nature<\/span><\/i> of the challenge, <\/span><\/i>no single actor alone can find the solution. <\/span><\/i>It requires collaboration across the public and private sectors. We must prioritise thoughtful investment in the creation and expansion of cybersecurity talent. This endeavour gives us an opportunity to create skilled, socially valuable and long-term careers for people from all walks of life and in all regions of the world.\u201d<\/span><\/i><\/p>\n

Supporting this narrative, statistics and reports from the <\/span>International Information System Security Certification Consortium (ISC2) <\/span><\/i>indicate a substantial shortage of cybersecurity professionals. The international think tank produced a \u2018Cybersecurity Workforce Study\u2019 in 2022, about one and a half years after Klaus Schwab, leader of the World Economic Forum went on stage to predict the world\u2019s next crisis.<\/span><\/p>\n