Cyber risk and advisory programs that identify security gaps and build strategies to address them.
MDR that provides improved detection, 24/7 threat hunting, end-to-end coverage and most of all, complete Response.
Our team delivers the fastest response time in the industry. Threat suppression within just 4 hours of being engaged.
Be protected by the best from Day 1.
24/7 Threat Investigation and Response.
Expert hunting, research and content.
Defend brute force attacks, active intrusions and unauthorized scans.
Protect assets from ransomware, trojans, rootkits and more.
Intelligence and visibility across AWS, O365, DevOps and more.
Configuration escalations, policy and posture management.
Detects malicious insider behavior leveraging Machine Learning models.
We have all seen the news articles and studies covering the “skills gap” or “talent gap” in cybersecurity. This gap is a known issue that has been present for years as qualified candidates become more scarce as demand grows. By 2022, an estimated 1.8 million cybersecurity jobs will go unfilled, according to ISC2. To compound that, the U.S. Bureau of Labor Statistics predicts the number of jobs in the security space to increase 18 percent from 2014 to 2024.
Today, eSentire released a new white paper that explores the skills shortage topic from a different angle. We looked at how organizations feel about the skills shortage and what they are doing to address it, and compared that with what the skills shortage looks like from the cybersecurity professionals’ perspective. Through research, we asked these professionals for their take on the skills shortage, what organizations can do to alleviate it and what motivates them.
The research shows that both organizations and their cybersecurity employees know some of the significant steps they can take to alleviate the skills shortage. However, the actions of the organizations are not following suit, perpetuating the problem and potentially causing the good employees they have to move on.
Thirty-two percent of organizations say it takes more than six months to fill cybersecurity positions at their organization, according to ISACA’s 2019 State of Cybersecurity survey. In 2018, 451 Research asked organizations facing a skills shortage what they could do to address the skills gap. Sixty-two percent responded that they could address the skills gap by training existing staff to learn new skills. In June 2019, eSentire teamed up with 451 Research and we asked what organizations were doing to address the skills gap. Fifty-eight percent were trying to hire additional staff. Only half were retraining existing staff. Not much has changed.
When we asked cybersecurity professionals what organizations could do to attract and retain talent better, their answers surprisingly matched exactly what organizations know they need to do, but are not executing. Of the polled cybersecurity professionals, 63 percent believe that ongoing education and certification programs are the answer. We also saw a correlation between high job satisfaction and happiness with the ongoing education options offered by employers. The cybersecurity professionals surveyed want continuing education. Over 48 percent agree that their skill set is falling behind due to the ever-changing demands of cybersecurity and 34.2 percent of respondents believe that learning new skills is the greatest motivator in achieving job satisfaction.
The white paper offers answers to a range of questions, including:
The paper concludes by presenting actions that organizations need to focus on in order to keep top performing cybersecurity professionals from job-hopping away in their quest for job satisfaction.
To learn more about eSentire’s Managed Detection and Response (MDR) capabilities and service offerings, visit here.
To read "The Self-Fulfilling Prophecy of the Cybersecurity Skills Shortage" white paper, visit here.
About the research
This report draws from a 451 Research study commissioned by eSentire in June 2019, a survey conducted in July 2019 by eSentire of 300 North America IT security professional and reputable independent research and industry sources including the U.S. Bureau of Labor Statistics and ISACA.
eSentire is the Authority in Managed Detection and Response, protecting the critical data and applications of 1000+ organizations in 70+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events. Combining cutting-edge machine learning XDR technology, 24/7 Threat Hunting, and proven security operations leadership, eSentire mitigates business risk, and enables security at scale. The Team eSentire difference means enterprises are protected by the best in the business with a named Cyber Risk Advisor, 24/7 access to SOC Cyber Analysts & Elite Threat Hunters, and industry-leading threat intelligence research from eSentire’s Threat Response Unit (TRU). eSentire provides Managed Risk, Managed Detection and Response and Incident Response services. For more information, visit www.esentire.com and follow @eSentire.