Registration was successful!
Please follow the link from the email sent to

Huge Shortfall in Security Operations Experts Amid Growing Cyberattacks

© REUTERS / Kacper PempelAn illustration picture shows a projection of binary code on a man holding a laptop computer.
An illustration picture shows a projection of binary code on a man holding a laptop computer. - Sputnik International
A new survey has uncovered a massive shortfall in qualified security experts needed to maintain the average Security Operations Center (SOC) which monitoring the operations of a corporation's digital footprint.

The results of the seventh (ISC)² Global Information Security Workforce Study (GISWS) conducted by Frost & Sullivan for the (ISC)² Foundation with the support of Booz Allen Hamilton, found 45 percent of hiring managers reporting that they are struggling to support additional hiring needs and 62 percent of respondents reporting that their organizations have too few information security professionals.

These findings were reported despite security spending increases across the board for technology, personnel and training; rising average annual salaries; high rates of job satisfaction and low rates of change to employment status. The analysts from Frost & Sullivan forecast a shortfall of 1.5 million experienced Security Operations experts by 2020. 

Solar eclipse - Sputnik International
No to Solar Power? 'Puzzling' Daesh Cyber-Attack Against Small UK Firm

Security Operations teams — known as SecOps — are overwhelmed by the day-to-day administration of low-impact incidents, leaving them unable to work productively on major incidents which could put the corporation at serious risk.

Automation Assistance

One of the options senior techies are working on to help alleviate the problem is the development of automated software that can be deployed to manage the day-to-day, repetitive and time-consuming tasks, leaving experts to concentrate on the major issues in a process known as SecOps orchestration.

David Shearer, CEO at (ISC)², said:

"My hope is that automation can help us get our head above the water and enable us to look at the parts of the security program which are not being adequately addressed right now — from awareness, educating the board, and investment to ensure that security gets in at the budget formulation stages, so that resources are available to look more holistically at the issue, during execution."

The report said: "Today's CISOs and CIOs need to start forcing more integration into their operations — that is, better leveraging automation and building the right skills with the right tools among staff to get the right results. In today's connected society, the dangers of this workforce shortage are far-reaching and serious."

To participate in the discussion
log in or register
Заголовок открываемого материала