Recently, the International Information Systems Security Certification Alliance (ISC2) released the 2023 Global Cybersecurity Talent Development Report. Based on interviews with 14,865 cybersecurity practitioners and managers around the world, the report provides a comprehensive analysis and in-depth study of the current state of development and major challenges of cybersecurity practitioners.
2024 is a year of both opportunities and challenges for enterprise CISOs and cybersecurity practitioners. On the one hand, there is a talent shortage and a widening skills gap, and enterprises need more talented cybersecurity talent to deal with emerging and unknown threatsOn the other hand, layoffs and budget reductions due to economic uncertainty are bringing unprecedented challenges to enterprise cybersecurity.
According to the report, companies can close the skills gap and alleviate the security talent shortage through ongoing education and certification training programs.
Key findings from the 2023 Global Cybersecurity Talent Development Report:
The scale of global cybersecurity talent.
and the talent gap grows in tandem.
In 2023, the number of global cybersecurity talents will reach 5.5 million, a year-on-year increase of 87%。But the cybersecurity talent gap has widened further to 4 million, an average increase of 126%。The Asia-Pacific region has the worst shortage of cybersecurity talent, with a year-on-year increase of 234%。
The cyber security industry is not immune to the wave of layoffs.
While the cyber talent gap is widening, surveys show that 47% of cybersecurity teams have experienced layoffs, budget cuts, or hiring freezes in the past year. Twenty-two percent of individuals surveyed have experienced layoffs, and 31 percent will see further layoffs in 2024.
What employers value most in 2023.
Five cybersecurity talent qualities.
According to the survey, the most important cybersecurity talent qualities for employers in 2023 are communication skills, security certifications, curiosity and Xi self-drive, basic cybersecurity knowledge and concepts, and cybersecurity qualifications (such as training) in addition to certificates.
Manpower shortages and skills gaps.
remains a major security challenge for businesses.
Despite the high demand for cybersecurity personnel, there will be a severe shortage of cybersecurity personnel and skills gaps for a long time. Sixty-seven percent of respondents said their organization lacked the cybersecurity staff needed to prevent and address security issues, while 34 percent cited insufficient budgets as the main reason for the problem, an increase compared to 2022 (29%).
The extent to which there are one or more skill gaps in the security team].
Ongoing Xi and training programs.
Helping to close the skills gap.
and alleviating talent shortages.
58% of cybersecurity professionals surveyed said they could close the skills gap to make up for the staffing shortage. In this new era of economic uncertainty, the best course of action for businesses is to close the skills gap through long-term and continuous training, education and certification, and weather layoffs and budget reductions. Upskilling employees is important, especially in times of economic uncertainty, and many organizations are facing hiring freezes. Training programs can alleviate staff shortages by assigning skills and preventing major skills gaps. The survey shows that organizations that invest in training are half as likely to have a critical skills gap compared to those that don't.
Organizations are making efforts to alleviate talent and skills shortages]06
Cybersecurity teams faced.
Unprecedented security challenges.
Seventy-five percent of companies surveyed said the current threat landscape is the most challenging in the past five years. Only 52% of respondents said they would have the tools and human resources to respond to security incidents in the next 2-3 years. Teams with talent shortages and skills gaps are highly concerned about not being able to keep their businesses safe.
Economic uncertainty.
poses a significant threat to cybersecurity.
Seventy-one percent of respondents believe that internal threats will grow rapidly during cycles of economic uncertainty. According to the survey, 39% of cybersecurity professionals have been exposed to malicious individuals (who have become ghosts). And enterprise cybersecurity teams that have experienced layoffs are three times more likely to be exposed.
al ML (Artificial Intelligence and Machine Learning Xi).
The importance of this is constantly being highlighted.
In 2023, AI ML entered the TOP5 of the ISC2 list of popular skills in cybersecurity, and in last year's study, AI ML did not even enter the "Top 10 Most Popular Skills", ranking close to the bottom. In the coming years, as AI matures, the demand for this skill is likely to surge and impact all aspects of cybersecurity threats and defenses.
Cybersecurity Career Path.
Change is underway.
The report data shows that cybersecurity jobs have become more attractive to some professionals with no cyber experience. More than half (59%) of hiring managers believe they are seeing an increasing number of candidates with technical experience but no cybersecurity experience, and organizations are embracing this. 51% said their organization is changing hiring requirements to hire more people from non-cybersecurity backgrounds.
For many, IT is a stepping stone into cybersecurity. 52% of cybersecurity professionals start their careers in non-cybersecurity IT roles. The second most popular route is to obtain a cybersecurity certification (51%) or learn cybersecurity concepts independently Xi formal training (45%).
Pathways to the cybersecurity industry]10
Cybersecurity professionals.
More emphasis is placed on experience than academic qualifications.
The report found that professional experience and competency certifications are more valuable than academic qualifications. The skills of a cybersecurity professional are shaped by a combination of education, training, and experience. When asked about the "experience and educational background of the ideal cybersecurity candidate," respondents made it clear that experience and credentials are the most important. Experience in a managerial position (86%) was preferred over a PhD (14%) when selecting candidates. Similarly, for junior cybersecurity talent, respondents value security work experience (70%) more than a university degree (30%).
Advanced Cybersecurity Experience vs Advanced PhD] In 2024, as the scale of cybercrime continues to expand and the cybersecurity threat landscape continues to change and deteriorate, the competition for senior security talent will become more intense, which requires professionals to not only have deep technical knowledge and professional skills, but also to demonstrate excellent capabilities in strategic planning and team management. As the cybersecurity landscape continues to change, so will their roles and responsibilities, requiring continuous Xi to adapt to new challenges and threats.
Worried about running out of time?】
Online learning Xi, flexible time, can be repeated**.
Worried about whether you can learn?】
Senior experts in the field of information security give lectures, and teachers follow the class guidance.
Preparing for the exam for the first time, no planning?】
The academic affairs teacher supervises the whole process, Xi homework, and prepares for the exam.
Worried that it won't work?】
The mock question bank of real questions is repeatedly brushed, and the pass rate is as high as 98%.
Please contact us by private message to register, and the exam will start soon!
There is a question bank material.