Hired guns: The rise of the virtual CISO


The enterprise is facing a dangerous combination of mounting cybersecurity threats of increasing subtlety—and a widening gap in the skills required to identify and combat them. Having someone who knows how to lead the charge in identifying and analyzing threats, creating strategic security plans and ensuring compliance requires the right level of expertise.

+ Also on Network World: Why you need a CSO/CISO +

The Information Systems Security Association spoke of a “missing generation” in information security, pointing to an estimated 300,000 to 1 million vacant cybersecurity jobs. To further complicate the labor shortfall, security professionals at enterprises understand they are in demand, and it is understood that employees will be receiving offers from other companies. According to a Ponemon study, senior security executives on average leave after 30 months on the job.

Almost three-fourths of respondents in a 2014 Ponemon report said their organizations do not have enough IT security staff. The fact is enterprises are looking to fill security positions. According to Burning Glass, a labor analytics firm, cybersecurity job postings grew 74 percent from 2007 to 2013. Filling those positions, however, is another story.

Leave a Reply

Your email address will not be published. Required fields are marked *