Wednesday, September 27, 2017

New problems, new solutions

A white sand beach and turquoise waters are what many would call the perfect paradise. Right now the northern hemisphere enters the fall and the south has not yet left the winter, so an image like this, except in tropical areas, sounds celestial music. Internet, with its infinite possibilities of leisure, information, consumption and exchange of data could seem like that perfect paradise in digital, but be careful, because in all paradise there may be, and indeed there are, undesirable companies.

There are sharks that would make it out of the water to any cautious who has had the luck ... of having seen them in time. Sharks also appear on the digital terrain: the recent "cyberagressions" to Equifax and SEC have not yet disappeared from the memory of involved and experts. Thios famous attacks have increased the worry and put on guard to own and strangers. Thus, the results of the latest survey by TripWire about the lack of cybersecurity skills that exist in companies are not surprising.

In the daily headlines a need for the increase of the level of cybersecurity by the companies is appreciated. But the changes in their internal risk management culture and relevant training seem to be still going at a slow pace.

To all these difficulties external factors that hinder this process are added. New actors come on the scene: the prevailing need to adapt to the cloud, Internet of Things (IoT) and DevOps. More sophisticated attacks have recently come to light, which complicates the scene a bit more. This makes even more evident the need to cover certain specialized cybersecurity profiles that do not exist in many companies today.

Companies feel vulnerable and unable to protect themselves from cyberattacks. 79% of surveyed companies have an increased demand for network monitoring and vulnerability management personnel. On the other hand, 88% need more expertise with the Cloud in particular. The great job now lies in knowing what to do and what qualities are what your company needs to invest in training or outsourcing.

A study earlier this year highlighted that one in of respondents have experienced a data breach in 2016. 30% felt that their organization is “very vulnerable” or “extremely vulnerable” to cyberattacks. This is very much in line with the Tripwire report which showed that 52% were concerned about keeping up with vulnerabilities.

In general it should be clear what the threats are and what the pending job post are to cover. However, this survey shows us that this is not happening. 91% of the respondents indicated that they expect to outsource security if unable to recruit the professionals themselves. 

The need for qualified job posts is clear. But the new problem reflected in this survey is the difficulty of retaining the professionals in the job in question. Simply supply and demand theory dictates that a better offer is always available. As a result, staff turnover is a real problem for many organizations.

Outsourcing is becoming commonplace in the cybersecurity sector, allowing companies to adapt to such a changing environment. 41% of respondents already outsourced security monitoring and 52% their vulnerability assessments. The benefit to a business is handing over the education, training and development of the entire ICT department.

It is easy to have an erroneous impression. Reading the results of this survey may have a slight feeling of inadequacy and lack of expertise on the part of the companies. The truth is that there is a great ability to search for alternatives and solve the problem in order to deal with cybersecurity attacks. This survey makes clear that outsourcing is one of these alternatives. As a conclusion to say, the cybersecurity sector is advancing at a galloping pace and the main objective of companies is to know how to adapt to it.


Post a Comment