Close
Close

HPE Aruba Networking Blogs

Biggest threat to security? Skills shortage

By Richard Leadbetter, Security Sales Specialist, EMEA

08/2/18

The biggest threat to security?  Regardless of the changing types of attacks one consistent threat regularly hits the top spot; people. The human factor all too readily providing misplaced trust and casual clicks that lead to media fanned disaster.

It’s a valid concern but the problem that I’m seeing rise fastest is the worrying lack of trained cybersecurity staff to help businesses protect themselves and to respond when things go wrong.  The situation is only getting worse – it is predicted that around 2 million cybersecurity roles will be left unfilled by the end of 2019.   There’s no quick fix for finding that amount of people…there’s no 4-day training course for this one.

Assuming that these people are not going to magically arrive at your doorstep, what should we do to alleviate the resource problem in the short-term?

  • Cross-train existing IT staff to assist with some security duties? In that case, we first need to free up some time from IT.  With it being estimated that spend on network operations is between 2 and 3 times the cost of the network it’s clear that something needs to be done to reduce the complexity of everyday tasks – and hopefully significantly reduce mistakes at the same time.  Whilst on the training theme, why not provide better (read more impactful) security awareness training for all staff?  Maybe the once a year phishing training isn’t quite what it was cracked up to be?
  • Help automate processes between security and management systems. With the average enterprise now having over 35 separate security products there’s a need to streamline how we can access the useful information from each – and to share that context between systems.   Remember, with the skills shortage also provoking wage rises the chances of having fully trained staff on each and every product is increasingly slim.   Anything that can save time on getting the most relevant info from all platforms, and therefore save time on individual investigations has to be a good thing.
  • Make sure we’re investing time and money in the right areas. Security is always full of this year’s silver bullets – some will stand the test of time, some probably won’t.  Regardless, we have to get the basics nailed down first to provide a secure foundation for future projects – there’s a very little point in investing in the latest generation monitoring system if we’ve left the front door wide open.
  • Finally – and this is one aimed squarely at the providers of security solutions – we need to provide solutions that don’t impinge on the user and business experience; otherwise we only pre-empt the worse outcome for everyone which is to simply do nothing.

About the Author

Richard Leadbetter

Richard Leadbetter

Security Sales Specialist, EMEA
Full bio

Tags:

Related Posts

Zero Trust, UTM, and Best-of-Breed SASE – Without Compromise!
Solutions

Zero Trust, UTM, and Best-of-Breed SASE – Without Compromise!

In today’s cloud-first world, WAN and network security needs are more interdependent than ever before.

Read more
Six Ways SASE Can Help Federal IT Improve the Nation’s Cybersecurity
Industries

Six Ways SASE Can Help Federal IT Improve the Nation’s Cybersecurity

Federal IT leaders must make bold changes over incremental improvements to secure cyberspace. Zero Trust…

Read more
Calling all Airheads: Expand your skills at Atmosphere ‘23
Corporate

Calling all Airheads: Expand your skills at Atmosphere ‘23

Get your network expertise prepped for whatever comes next.

Read more
Take your skills to the next level with HPE Aruba Networking certification exams at Atmosphere
Corporate

Take your skills to the next level with HPE Aruba Networking certification exams at Atmosphere

Take your skills to the next level with HPE Aruba Networking certification exams at Atmosphere.

Read more

© Copyright 2024 Hewlett Packard Enterprise Development LP