Some Cyber Roles are Overstaffed While Others Are Understaffed

Some Cyber Roles are Overstaffed While Others Are Understaffed

As organizations struggle to staff their cybersecurity teams, new (ISC)2 research reveals they also may be suffering from an imbalance in the distribution of team member roles. Positions that currently appear overstaffed include compliance, forensics and operational technology security while jobs in security operations, security administration and risk management seem to be understaffed.


This creates a need for CISOs and cybersecurity managers to take a close look at their teams and figure out what adjustments to make. Keeping too many people in certain roles while understaffing other positions potentially makes it harder for an organization to build and maintain effective defenses against cyber attacks.


Such an imbalance, in addition to a worldwide skills shortage of about 4 million cybersecurity professionals, could lead to security gaps that cybercriminals may exploit to deliver attacks. Both the imbalance and skills shortage are among the findings of (ISC)2’s Cybersecurity Workforce Study 2019, which polled more than 3,000 cyber and IT professionals.


The study estimates the current cybersecurity workforce in the United States and 10 other world economies at 2.8 million – about 4 million short of what it needs to be. Filling the gap would require a 145% increase in cybersecurity workers.


Size and Regional Differences


As cybersecurity has evolved into its own discipline with responsibilities distinct from general IT, it has spawned a long and varied list of professional roles, including CISO, security architects, engineers, analysts and developers. As with any other business areas, striking the right balance in these roles is important to achieve the best possible results.


The Workforce Study suggests that overstaffing and understaffing in cybersecurity roles varies by c ..

Support the originator by clicking the read the rest link below.