In the UK, the current cybersecurity workforce estimate is 289,000, alongside 121,000 in France and 133,000 in Germany. The shortage of skilled professionals across EMEA has grown to 291,000.
“We’ve been evolving our research approach for 15 years to get to this point today, where we can confidently estimate the current workforce and better understand what it will take as an industry to add enough professionals to protect our critical assets,” said Wesley Simpson, chief operating officer, (ISC)2. “Perhaps more importantly, the study provides actionable insights and strategies for building and growing strong cybersecurity teams. Knowing where we stand and the delta that needs to be filled is a powerful step along the pathway to overcoming our industry’s staffing challenges.”
Along with providing these estimates, the study takes a closer look at who cybersecurity professionals are and what motivates them, reveals how organizational security teams are staffed, and outlines data-driven insights into immediate and longer-term methods for building qualified and resilient cybersecurity teams now and in the future.
Among the key findings from the study:
Strategies for Building Up Cybersecurity Teams
In the face of the growing need to build the workforce and recruit new talent, there are four main strategies outlined in the report. These include (1) highlighting training and professional development opportunities that contribute to career advancement, (2) properly level setting on applicant qualifications to make sure the net is cast as wide as possible for undiscovered talent, (3) attracting new workers such as recent college graduates who have tangential degrees to cybersecurity, or seasoned pros such as consultants and contractors into full-time roles, and (4) strengthening from within by further developing and cross-training existing IT professionals with transferrable skills.
The Cybersecurity Workforce Study shows that cybersecurity and IT professionals are largely satisfied in their careers and optimistic about their futures. But the size of the current workforce still leaves a significant gap between the number of cybersecurity professionals working in the field and the number needed to keep organizations safe.