It is becoming increasingly evident that cyber attacks are on the rise. You would expect organizations to conduct training and readiness exercises to address these threats. However, it seems many organizations (specifically in Australia) have begun to ramp down their cyber training even though the demand for security professionals continues to grow. This seems quite ludicrous, as it's like having a security system installed and not having trained your staff to engage with the technology!
Therefore, the big question is: will Australian companies finally take cyber training seriously, or will they continue to take short cuts while attacks keep rising? I do hope companies can make the right decision because the alternative is not pretty.
Not Enough People in Cyber Teams
It is clear from the problems we see half of Australian cyber teams do not have enough employees. Approximately 54% of organizations indicate they have staffing shortages, yet 58% of organizations say they have open positions. Despite this, only 34% of organizations train other staff for cyber employment roles in their companies. This is clearly a risk, as most cyber personnel did not enter the profession with a focus on cyber but learned on the job! Employee training is critical, yet organizations are ignoring it.Recruitment and Staff Retention are Challenging
Finding qualified cyber employees is an uphill battle. It takes 3-6 months to fill entry-level positions, and filling higher-level positions takes even longer. Retaining talented people also is difficult. With 70% security professionals expecting their demand to increase this year, companies really need to pick up the pace.Monetary Limitations and Skills Shortages
Cost is an important consideration. Nearly half of firms in Australia feel that the budget is inadequate for cyber and only one in four firms expecting an increase in funding next year. Moreover, many teams lack soft skills such as communication and problem-solving, It does not matter if you have the most current technology available, if your staff aren't working together.Artificial Intelligence and Escalating Threats
Cyber teams are also grappling with artificial intelligence. More than half are involved in developing guidelines for AI, and many organizations are using AI to assist in identifying threats or to automate tasks. Meanwhile, threats are increasing – 41% of organizations reported having more threat incidents than last year, and the level of pressure on teams also increases.The Importance of Training
Here’s my two cents: companies can’t just keep hiring people. The best option is to train your existing employees. It’s faster, cheaper, and safer. If companies want to be safe on the web, they need to focus on people, as well as technology.Therefore, the big question is: will Australian companies finally take cyber training seriously, or will they continue to take short cuts while attacks keep rising? I do hope companies can make the right decision because the alternative is not pretty.
