he cyber-security skills shortage is enormous … and growing. Over 40% of IT decision-makers in North America are having difficulty finding qualified cyber-security talent. ISACA is predicting a two million shortage of cyber-security employees next year.
IDC views these trends as irreversible and predicts the number of cyber-security companies will drop by nearly 40% by 2023.3 There aren’t enough cyber-security professionals and companies are reducing their usage of security products in favor of platforms. This in turn will reduce the entrepreneurial opportunities of start-up security companies.
“The evolution of cyber-security as an industry involves an amalgamation and a process of natural selection as it reaches a more mature growth market,” Puckett said. “The effective and efficient will win out over the fray.”
Professionals with up-to-date cyber-security skills and certifications will separate from the pack. This type of expertise is in high demand. And just a general understanding of cyber-security best practices isn’t enough. Superior cyber-security organizations will be defined by how well they build winning cyber-security teams by developing expertise across eight specialization areas:
- Architecture and Policy
- Data Loss Prevention
- Governance, Risk and Compliance
- Identity and Access Management
- Incident Response and Forensic Analysis
- Penetration Testing
- Secure DevOps
- Secure Software Development