Mexico. Due to the lack of training and experience among IT professionals in security issues, a growing requirement in companies, the Mexican company Comstor estimates that this deficit puts business operation at risk.
1,800,00 is the estimated number of the deficit of digital security skilled labor worldwide through the year 2022. A number that may seem absurd, but that is not enough to stop criminal advances in computer networks.
Nor will information security strategies be sufficient to curb digital threats, if there are no specialists to handle the processes. This is what the results of the Global Study Group on Information Security 2017 (GISWS) carried out in collaboration with the (ISC)² and by the consultancy Booz Allen Hamilton show.
The lack of competence in digital security leaves 25% of companies unprotected for at least 6 months, until a collaborator in the area is replaced.
Some solutions that companies have found to solve this "gap" is to train the IT team, offering training different from those they had when they were hired and making them able to perform at least the basic processes against virtual attacks.
Another possibility is the hiring of third parties who are specialists in cybersecurity, since the knowledge is very specific and most of those who have a high degree of knowledge are self-taught, accompanying the novelties of the market, testing tools and ways to counterattack.
The State of Cyber Security 2017 - Workforce Trends and Challenges research, conducted annually by the ISACA association, interviews security leaders around the world to determine their ideas and experiences regarding cybersecurity, ranging from workforce challenges to opportunities against emerging threats.
Specifically about labor, this year's edition shows that only 37% of companies say that candidates for digital security vacancies have skills and certifications that prove their degree of knowledge.
Therefore, 55% of entrepreneurs say that experience becomes an important point for a candidate in cybersecurity. For candidate effectiveness, however, 70% of companies require at least one certification.
According to the study, the main problem in obtaining a talent that has mastery in cybersecurity is precisely the lack of qualified candidates, being that, to hire, companies, in addition to certifications and experience, also consider the practices and results obtained in previous jobs.
On average, companies take about 6 months to fill the position, and that is why 59% of recruiters receive only 5 candidates for each vacancy in the sector.
Certifications that enhance the career of any candidate.
There are countless possibilities of courses and certifications on the market for professionals to increase their knowledge. Therefore, some have a better reputation, valuing the CV of a technician.
These include:
CCNA- Security in Cisco Certified Network Professional Security
CISA – Certified Information System Auditor
CISM - Certified Information Security Manager
CISMP – Certification on Information Security Management Principles
CISSP – Certified Information Systems Security Professional.
These are just some of the possibilities among many that exist in the market, from training for beginners to for the most advanced positions, depending on the hierarchical level in which the candidate is and for which he intends to compete.
The important thing is to know that there is demand, that companies are looking for qualified specialists and that this is a sector where the trend indicates that there will be greater growth in the number of vacancies.
