Recent News Coverage Focused on Cybersecurity Strategy and Leadership Recruiting
November 17, 2021
The challenges surrounding cybersecurity leadership recruiting in 2021 are multi-faceted. As reflected in a recent ISACA survey
, there is a severe cybersecurity talent gap in the United States, with companies and organizations often struggling to identify and secure the cyber leaders they need to successfully defend against cyberterrorists and other digital threats that have emerged in recent years. More than 60-percent of survey respondents report that their cybersecurity teams are understaffed, and 55-percent report having currently unfilled cybersecurity leadership positions. Even those companies whose cyberteams are fully staffed are having to manage additional levels of risk created by the expanding work-from-home reality brought on by the pandemic
Addressing this problem will require an all-hands-on-deck approach. Schools need to engage more children in STEM studies at an earlier age. More universities need to follow the lead of Le Moyne College
and establish cybersecurity majors and minors
. Companies and organizations need to be more proactive in developing and mentoring young cyberleadership talent, and, working together with cybersecurity recruiting firms, they must deploy strategies to build larger and more diverse candidate pools
from which to choose.
As one of the nation’s premier cybersecurity recruitment agencies, we are specialists in securing the most experienced and talented cyber leaders – both active and passive – to help keep your organization and its people safe. We deliver critical team members, including Chief Information Security Officers (CISOs), Business Information Security Officers (BISOs), Chief Revenue Officers, Chief Security Officers, Chief Product Security Officers, Chief Technology Officers, and many others to organizations across myriad industries including energy, financial services, oil-and-gas, philanthropy, security detection and response, and transportation.
News coverage of the current cybersecurity landscape provides additional insights and perspectives to guide your company’s cybersecurity strategy. A compilation of recent news articles is listed below.
“Non-Traditional Cybersecurity Career Paths: Howto Find Your Own Way”
November 12, 2021
“In two previous blog posts, I shared the non-traditional cybersecurity career paths of more than a dozen professionals and how their previous life experiences shaped their security work. It’s been an honor helping to tell these individuals’ stories. We conclude this blog series with a final installment in which these same cybersecurity professionals share advice on how people can find their own way into the industry.”
World Economic Forum
“If healthcare doesn't strengthen its cybersecurity, it could soon be in critical condition”
November 8, 2021
"It’s hard to imagine anything more cynical than holding a hospital to ransom, but that is exactly what’s happening with growing frequency. The healthcare sector is a popular target for cybercriminals. Unscrupulous attackers want data they can sell or use for blackmail, but their actions are putting lives at risk. A cyberattack on healthcare is more than an attack on computers. It is an attack on vulnerable people and the people who are involved in their care; this is well illustrated by the breadth of healthcare organizations, from hospitals to mental health facilities to pharmaceutical companies and diagnostic centres, targeted between June 2020 and September 2021.”
“Labor shortages outrank cyber threats as biggest concern for tech companies”
October 29, 2021
“Of all the issues that can keep technology executives up at night, the labor shortage is far and away the biggest worry.
“That’s just one of the findings from a recent CNBC Technology Executive Council
survey conducted between October 1 and October 15. The quarterly survey examines the issues and concerns facing technology executives at some of the country’s leading companies. And while cyberattacks and supply chain disruptions that threaten to derail holiday shopping remain high on the list of worries of chief information officers, chief technology officers and others, the ability to find enough skilled workers outranks both those concerns.”
“Microsoft Starts Campaign to Fill 250,000 Cybersecurity Jobs”
October 28, 2021
. is launching a national campaign with community colleges to help fill 250,000 cybersecurity jobs by 2025, amid a dire labor shortage in the critical field.
“The software giant will invest tens of millions of dollars into the initiative over the next few years, according to a blog post
. Some of the new recruits will work at Microsoft but the vast majority will find jobs at tens of thousands of other employers across the country.”
“How We Can Narrow the Talent Shortage in Cybersecurity”
October 25, 2021
“At organizations both large and small, cybersecurity professionals have been thrown into an unprecedented storm, facing some of the toughest issues. Despite an ongoing shortage of qualified cybersecurity personnel, teams across public and private sectors are working hard to tackle new challenges and protect their organizations.
“For large global enterprises and fledgling startups alike, a strong security posture is a business imperative… cybersecurity professionals and technologists are facing tough challenges to protect our assets. Verizon's "2021 Data Breach Investigations Report
" has shown us that threat actors continue to adapt to this ever-evolving attack surface. Meanwhile, the industry faces another problem: Cybersecurity professionals are in high demand but short supply. This skill shortage is impacting how we can respond to and mitigate attacks. One(ISC)² Cybersecurity Workforce Study
puts the global cybersecurity talent shortage at more than 4 million people.”
“Non-Traditional Cybersecurity Career Paths: Entering the Industry”
October 21, 2021
“There are lots of ways organizations can work to address the cybersecurity skills gap. Working with young people
, providing skilling for students
and implementing zero trust
helps. So does amplifying gender diversity
and promoting respect in the workplace
. Organizations can use all these strategies to fill their open positions and meet their cybersecurity needs. But there are other ways, too, demonstrated by these stories of non-traditional cybersecurity career paths.
“Here’s one more: not demanding that team members always take a traditional cybersecurity career path. Otherwise, they’d end up overlooking so many others who’ve found their own ways into cybersecurity. They’d deny the industry of the experience and life skills those individuals bring with them.”
“Meeting the Demands of Hiring Cybersecurity Pros”
October 13, 2021
“It’s no surprise that the number and severity of cyberattacks continue to increase, with ransomware more than doubling in North America since 2019. These breaches cost companies an average of $4.24 million per incident.
“Unfortunately, the current supply of experienced cybersecurity staff is not enough to meet the growing demand. The latest survey report from the Information Systems Security Association (ISSA)and industry analyst firm Enterprise Strategy Group (ESG) indicates that there are more than four million unfilled cybersecurity positions globally. More than a third (38%) of respondents point to pay as the top contributing factor to that skills gap.”
“Four Reasons to Run a Tabletop Exercise This Cybersecurity Awareness Month”
October 13, 2021
“This Cybersecurity Awareness Month, it’s important to think about how you can best protect your company from cyberattacks. One of the most effective ways is by running a tabletop exercise with your team. A tabletop exercise will allow you and your team to identify potential vulnerabilities in advance and come up with solutions together before they happen.”
“Finding the right mix: Leveraging policy andincentives to improve healthcare cybersecurity”
October 7, 2021
“When businesses are hit by a cyberattack, it can mean a disruption in operations, lost revenue and customer dissatisfaction because their personal information is exposed. But for the healthcare sector, the impact is far greater; cyberattacks can be a matter of life or death.
“…While cyberattacks have not directly contributed to patient deaths in U.S. hospitals, they have impacted patientcare and, in some cases, increased patient death rates in the aftermath. Hospitals have furloughed hundreds of workers, been locked out of computers used to administer cancer treatments and experienced disruptions accessing patient records. While patient diversions like the example above are often necessary to maintain the safety and integrity of patient care, such actions can have serious adverse consequences.”
“Diversity is critical to closing the cybersecurity skills gap”
September 28, 2021
“The current cybersecurity workforce gap is estimated to be over 3.1 million globally. The workforce needs to grow 89% to effectively defend organizations’ critical assets from increasingly sophisticated cyberattacks.
“While there is no silver-bullet solution to this problem, diversity, equity and inclusion (DEI) is critical to attracting more talent to the profession. Cybersecurity threats and challenges are constantly evolving, but the workforce has remained relatively unchanged from a representation standpoint.
“There are numerous benefits to diversity in the cybersecurity industry. Arguably the most imperative to addressing the current threat landscape is the positive impact different backgrounds, experiences and perspectives have on the public and private sectors’ ability to fight cybercrime.”
“Best careers with a cybersecurity degree”
September 28, 2021
“Companies around the world depend on cybersecurity professionals to stop security breaches and investigate cybercrimes. Cybersecurity professionals play a vital role in diverse industries, including the energy sector, government, and tech. They implement security procedures, test systems for vulnerabilities, and prevent cyberattacks.
“A cybersecurity degree opens the door for many jobs in information assurance and cybersecurity. Graduates work as information security analysts, penetration testers, and forensic computer analysts. With experience, they move into management-level roles like cybersecurity manager or chief information security officer.”