The Register: Mind the talent gap: Infosec vacancies abound, but hiring is flat

Source URL: https://www.theregister.com/2024/09/11/mind_the_talent_gap_infosec/
Source: The Register
Title: Mind the talent gap: Infosec vacancies abound, but hiring is flat

Feedly Summary: ISC2 argues security training needs to steer toward what hiring managers want
The shortfall between the number of working security professionals and the number of security job openings has reached 4.8 million – a new high, according to cyber security non-profit ISC2.…

AI Summary and Description: Yes

Summary: The text outlines a significant shortfall in the cybersecurity workforce, with a reported gap of 4.8 million job openings versus available professionals. This increase in job openings is attributed to budget issues rather than a lack of qualified talent. The study reveals a disconnection in the skills desired by security professionals versus what organizations prioritize, emphasizing the need for investment in cybersecurity education and training.

Detailed Description:
The issue of cybersecurity workforce shortages is reaching a critical level, posing heightened risks to organizations. The key findings of the ISC2 report and additional insights include:

– **Current Workforce Gap**: There is a staggering gap of 4.8 million cybersecurity job openings globally, with the workforce estimated at only 5.5 million. This indicates a 19% year-on-year increase in open positions.

– **Budget Constraints**: For the first time, budget limitations are cited as the primary cause for staffing shortages, eclipsing the traditional narrative of a lack of qualified personnel. Key statistics include:
– 37% of respondents noted budget cuts contributing to shortages.
– 25% indicated layoffs are affecting staff availability.
– 38% are facing hiring freezes, with 32% reporting fewer promotions.

– **Skills Mismatch**: There is a notable disconnect between the skills that cybersecurity professionals want to develop and those that hiring managers prioritize. The top desired skills include:
– Communications (31%)
– Cloud Computing (30%)
– AI (23%)
– Government and Regulatory Compliance (19%)
Conversely, hiring managers are seeking different skill sets, particularly in areas not prioritized by professionals.

– **Skills Gaps**: The report highlights that 90% of organizations report skills gaps within their cybersecurity teams, with specific skills in high demand being AI, cloud computing, zero trust, incident response, application security, and penetration testing.

– **Recommendations**: Andy Woolnough from ISC2 stresses the importance of investing in cybersecurity education and training to address these gaps effectively.

– **Tech Employment Trends**: Although tech job postings rose by 211,000 in August, employment in tech occupations overall declined by 28,000, emphasizing cautious spending by companies in new hiring and technology investments.

This analysis suggests that professionals in cybersecurity and related fields need to focus on enhancing budget strategies and training programs to bridge the skills gap and better position themselves in the labor market. Moreover, organizations must reassess their hiring and training priorities to ensure they are attracting the necessary talents that match industry requirements.