Coping With Cyber-Security Challenges
Cyber-security affects almost every corner of the enterprise, including internal security, the bring-your-own-device (BYOD) movement, customer interactions, and even how organizations hire and train workers on security issues. A recent survey of 649 cyber-security professionals conducted by ISACA at the 2015 RSA Conference identified a number of key—and disturbing—trends. They include the following: Cyber-crime is on the rise, hackers and attackers are becoming more sophisticated, and most organizations are ill-equipped to deal with this problem. At the center of the equation is the fact that most organizations are coping with a shallow talent pool of cyber-security professionals, so they don't have the expertise or resources to handle complex threats. The top three staffing concerns involve the lack of adequate formal education, limited practical experience and the fact that many IT professionals don't have the required certifications. "The 'State of CyberSecurity: Implications for 2015' study reveals a high-risk environment that is being made worse by the lack of skilled talent," noted Robert Stroud, CGEIT, CRISC, international president of ISACA and vice president of strategy and innovation at CA Technologies. "If there is any silver lining to this looming crisis, it is the opportunity [available] for college graduates and professionals seeking a career change."