When U.S. News and World Report reviewed the 10 best technology jobs for 2017, a career in information security analysis ranked seventh on its list.
This ranking is for good reason: Cybercrime now costs the U.S. economy more than $100 billion a year and organizations are keen to hire the best talent that money can buy. In fact, the median annual salary for these positions is $90,000 – and even higher in tech meccas such as San Francisco and New York City.
Unfortunately, another reason that salaries are so high is that the supply is so low.
... there are more than 200,000 open positions in cybersecurity, a number that’s expected to climb to 1.5 million by 2019
When it comes to cybersecurity, there are more than 200,000 open positions in cybersecurity, a number that’s expected to climb to 1.5 million by 2019. Organizations continue to struggle to hire additional staff for cybersecurity analytics and operations, two job functions that are increasingly vital in cyberdefense. Other high-value skills are also in critically short supply, such as:
Since the talent shortage is likely to linger for quite some time, the onus is on businesses to either develop needed cybersecurity skills or look for outside help. Indeed, in many cases, outsourcing security may make the best sense.
Indeed, more businesses than ever are turning to third party organizations that specialize in offering security services. In the latest AT&T Cybersecurity Insights report, results from an AT&T survey of U.S., APAC and EMEA organizations showed that about a quarter of the respondents use outside consultants to handle their information security.
The shortage of available talent only amplifies the appeal. Small and midsize businesses are less likely to be in a position to bid for the services of expensive cybersecurity specialists. What’s more, their resources are often stretched thin and they may lack the bandwidth to adequately perform security functions internally.
Even for larger enterprises, there are many instances where it makes sense to hand off certain specialized functions, such as penetration testing or threat intelligence. Going that route also helps free up existing security and IT staff to concentrate on other projects as they arise. Among the other benefits:
Figure out what you can take on yourself and what needs to get passed over to a third party. If your security infrastructure is in dire need of a reboot, the contractor should help with a needs analysis and then shape its services and monitoring capabilities to the organization’s needs. Any prospective provider should be expected to understand their customer’s business model.
And before signing anything, reduce the possibility of confusion down the road by figuring out how the outside security consultancy will integrate with your existing operations.
Learn more about balancing your company's cybersecurity budget in AT&T Cybersecurity Insights, Volume 6: "Mind the Gap: Cybersecurity’s Big Disconnect."
Learn how your business can fill the gaps and help strengthen its defenses in this free, interactive report: “Mind the Gap: Cybersecurity’s Big Disconnect.”
Share this with others
READ MORE ARTICLES ON:
Sign up for the AT&T Business newsletter
Your feedback will help us to improve AT&T Business so you continue to have a great experience when visiting us!
This survey is conducted by an independent company ForeSee for AT&T.
Yes, I’ll give feedback!
Please provide the following information to access your document:
* To access your content, please check your browser settings to make sure pop-up windows are allowed.