Cybersecurity skills gap cause breaches

Fortinet has released its 2022 Cybersecurity Skills Gap Report. The new global report reveals that the cybersecurity skills shortage continues to have multiple challenges and repercussions for organizations, including the occurrence of security breaches and subsequently loss of money. As a result, the skills gap remains a top concern for C-level executives and is increasingly becoming a board-level priority. The report also suggests ways the skills gap can be addressed, such as through training and certifications to increase employees’ education.

The Widespread Global Impact of the Cybersecurity Skills Shortage


According to (ISC)2’s 2021 Cyber Workforce Report, the global cybersecurity workforce needs to grow 65 percent to effectively defend organizations’ critical assets. While the number of professionals needed to fill the gap has decreased from 3.12 million down to 2.72 million in the past year, this is still a significant void that leaves organizations vulnerable.



Fortinet’s report demonstrates multiple risks resulting from the cybersecurity skills gap. Most notably, 8 in 10 organizations surveyed have suffered at least one breach they could attribute to a lack of cybersecurity skills or awareness. The survey also showed that globally 64 percent of organizations experienced breaches that resulted in loss of revenue, recovery costs and/or fines.



Given the increasing costs of breaches on organizations’ profits and reputation, cybersecurity is becoming more of a board level priority. Globally, 88 percent of organizations that have a board of directors reported that their board asks questions specifically about cybersecurity. And 76 percent of organizations have a board of directors who has recommended increases in IT and cybersecurity headcount.



Advancing Cybersecurity Skills Through Training and Certifications


Fortinet’s skills gap report demonstrated that training and certifications are critical ways organizations seek to further tackle the skills gap. The report revealed that 95 percent of leaders believe technology-focused certifications positively impact their role and their team, while 81 percent of leaders prefer to hire people with certifications. Additionally, 91 percent of respondents shared they are willing to pay for an employee to achieve cyber certifications. One major reason for certifications being highly regarded is due to their validation of increased cybersecurity knowledge and awareness.


In addition to valuing certifications, 87 percent of organizations have implemented a training program to increase cyber awareness. However, 52 percent of leaders believe their employees still lack necessary knowledge, which raises question around how effective their current security awareness programs are.



For organizations looking for security awareness training, Fortinet offers a Security Awareness and Training service through the award-winning Fortinet Training Institute. The service further protects organizations’ critical digital assets from cyber threats by building employee cybersecurity awareness. This service receives updates from Fortinet’s FortiGuard Labs threat intelligence so that employees are learning and keeping up with the latest evolving cyberattack methods to prevent company breaches and risks from being introduced.



Addressing Recruitment and Retention Challenges with Diversity Commitments


A significant challenge for organizations has been finding and retaining the right people to fill critical security roles ranging from cloud security specialists to SOC analysts. The report found that 60 percent of leaders admit their organization struggles with recruitment and 52 percent struggle to retain talent.



Among hiring challenges is the recruitment of women, new college graduates and minorities. Globally, 7 out of 10 leaders see the recruitment of women and new graduates as a top hiring hurdle and 61 percent said hiring minorities has been challenging. As organizations look to build more capable and more diverse teams, 89 percent of global companies have explicit diversity goals as part of their hiring strategy according to the report. The report also demonstrated 75 percent of organizations have formal structures to specifically recruit more women and 59 percent have strategies in place to hire minorities. Additionally, 51 percent of organizations have efforts in place to hire more veterans.

Hibernian FC is delighted to announce an innovative multi-year partnership with Acronis, the global leader in cyber protection, and Dunedin IT, one of Scotland's most trusted and experienced technology and connectivity providers providing end-to-end services.
Latest Prisma Cloud platform updates help organizations continuously monitor and secure web applications with maximum flexibility.
Despite the uptick in conversations about the importance of a secure password, half of the country’s workforce have a memorable word written in a notepad on their desk – with an astonishing 95% storing it on an easily accessible device.
Orange Cyberdefense will work with NightDragon portfolio companies to infuse technology into high-value security services to help customers stay ahead of threats.
Kyndryl and Veritas Technologies have formed a global partnership to help enterprises protect and recover their critical data across multi-cloud environments.
John B. Sanfilippo and Son, Inc (JBSS), one of the largest nut producers in the world, has adopted Cyren Inbox Security to proactively combat ransomware threats and meet evolving cybersecurity insurance requirements.
A global IT security and compliance survey of 800+ IT professionals found that the rate of IT security incidents increases the more Microsoft 365 security features are used. Conducted by Hornetsecurity, a leading security and backup solution provider for Microsoft 365, the survey findings were released at Infosecurity Europe 2022, being held this week at ExCel London.
A community effort designed to give back to aspiring cybersecurity professionals and increase industry-wide diversity through knowledge sharing and networking.