Recent high profile stories like the Heartbleed bug have turned the spotlight on IT security. A new report by the Information Security Audit and Controls Association (ISACA) highlights how a skills crisis is putting more pressure on security teams.
Too Many Threats
- 62% increase in breaches in 2013
- 1 in 5 organizations have experienced in APT attack
- $3 trillion US Dollars is the total global impact of cyber crimes
- 8 months is the average time an advanced threat goes unnoticed on a victim’s network
- 2.5 billion exposed records are a result of data breaches in the past 5 years
- Only 15% respondents feel confident they have the skills to meet evolving threats
- 61% believe the growing scope and complexity of IT security makes it difficult for their organizations to effectively assess current security programs and develop comprehensive strategic planning efforts
Too Few Professionals
With the skewed demand vs supply for experienced cyber security professionals, we need to work together as a community to address increased cyber criminal activity. Enterprises need to invest in security training for their current IT employee base, and more universities need to implement accessible cyber security education programs in the interim.
- 62% of organizations are not familiar with advanced persistent threats (APT)
- 1 in 3 security professionals are not familiar with advanced persistent threats
- 83% of enterprises currently lack the right skills and human resources to protect their assets
- 1 million unfilled security jobs
- <2.4% graduating students hold computer science degrees