Cyber Security is a ‘people problem’ says IISP Survey


…but more companies say they are better prepared to deal with a breach or incident

20 April 2017: Over 80% of security professionals identify ‘people’ as the industry’s biggest challenge compared to technology and processes, according to the results of the second annual survey from The Institute of Information Security Professionals (IISP). The survey also indicates that while 60% of respondents still feel that investment is not keeping pace with threat levels, there was a modest 5% increase in businesses that feel better placed to deal with a breach or incident if it happens. In real terms, spending does appear to be on the rise with 70% of companies seeing an increase in budget, up from 67% and only 7% reporting a reduction, which is down from 12% last year.

Piers Wilson
Piers Wilson
While people have long been seen as the weakest link in IT security through lack of risk awareness and good security practice, the people problem also includes the skills shortage at a technical level as well as the risk from senior business stakeholders making poor critical decisions around strategy and budgets. Interestingly, the increase in reported skills shortages contrasts with a decrease in those reporting a lack of experience being a market factor. This suggests that as the industry matures the shortage of experienced, senior managerial professionals will reduce and the problem will be felt most acutely in the hands-on technical disciplines.

“The survey highlights the continued need for industry, government, academia and professional organisations like the IISP to continue to work hard to attract new entrants and younger people into the industry,” said Piers Wilson, author of the report and Director at the IISP. “This year, over 75% of respondents had a degree and over a third had a post graduate Masters Degree – an increase of over 5%, reflecting the increasing number of university programmes. While this is very encouraging, we also need to develop other routes into the industry to harness talent from diverse backgrounds.”

“It is still the case that technical IT security disciplines don’t always get their share of respect, yet these are the people at the front line defending systems and companies from attack and keeping one step ahead of the cyber criminals,” adds Wilson.

Despite a lack of wider recognition, the security industry is increasingly lucrative and provides a strong career path for those with the right skills and abilities. Some three-quarters of respondents reported positive job and career prospects, with 28.6% earning between £50 to £75k and almost 20% on salaries over £100k.

“The challenges around hiring and retention are putting an upward pressure on salaries,” says Piers Wilson. “But while money and career opportunities were cited as the most common reasons for taking and leaving jobs, other factors include variety of work, management and company culture, research and learning and autonomy.”

“Many of the figures in this year’s survey show a step in the right direction,” says Piers Wilson, “The continuing high frequency of cases hitting the headlines and the regulatory pressures, including from GDPR, are leading to a corresponding increase in investment and a drive for increased skill, experience, education and professionalism. However, there is still a lot of work to do and we need to redouble our efforts to meet the challenge of increasingly sophisticated threats.”

Along with surveying its diverse membership of over 2,500 people, this time the IISP opened the survey up to non-member security professionals. The respondents to the survey represent a wide range of ages, experience and industry sectors and so provide a very accurate picture of the state of UK businesses in terms of skills shortage issues, the state of security preparedness and risk awareness.

A copy of the IISP white paper on the results of the survey is available here: https://www.iisp.org/imis15/iisp/About_Us/IISP_Media/iispv2/About_us/IISP.aspx?hkey=866b64e2-77f2-4159-9acd-134c01ae54cf.

About the IISP
The Institute of Information Security Professionals (IISP) is a not-for-profit organisation, owned by its members, dedicated to raising the standard of professionalism in information security and the industry as a whole. The IISP does this through accrediting skills and competence, by sharing best practice and by providing a network of support and guidance on individual skill development. It speaks with an authoritative voice and its competency based memberships are widely recognised in the information security industry.

Working closely with the information security community, the IISP has a growing membership of over 2,800 individual members across private and government sectors, 44 Corporate Member Organisations and 19 Academic Partners.

At the heart of the Institute is the IISP Skills Framework ©2017 which is widely accepted as the de facto standard for measuring competency of information security professionals. The NCSC has taken this framework to underpin a range of certification schemes including the Certified Professional Scheme (CCP), for which the IISP is the leading certifying body and to develop syllabuses for Masters Degrees.

The skills framework is used extensively by our corporate members to benchmark and develop capability of their employees. It also been adopted by e-Skills UK to develop a National Occupational Standard for Information Security. The IISP also accredits training courses offered by commercial training providers against the Institute’s Skills Framework. This enables attendees to build knowledge in areas of the skills framework where they might have gaps and to gain hands-on experience.

More information about the IISP and its work can be found at www.iisp.org

Have any Question or Comment?

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

::::::::::::::::::::::::::::::::::6733:::::::::::::::::::::::::::::::::;;

:::::::::::::::::::::::::::::925:::::::::::::::::::::::::::::::

TRIO STEEL IS ONE OF THE MOST TRUSTED BRAND AND LEADING EXPORTER AND SUPPLIER OF CARBON STEEL, ALLOY STEEL & STAINLESS STEEL PIPES & PIPE FITTINGS MATERIAL. Triosteel is one of the leading Suppliers and Exporters of API 5L Pipe in Singapore. Triosteel also Exports to many countries like Indonesia, Iran, Saudi Arabia & many more. An API 5L pipe is manufactured by adhering to the specifications laid down by the International Organization for Standardization (ISO) 3183.

2780

buy! buy! CHEAP! Telefonie VoIP CHEAP! buy! buy! CHEAP!

2781

buy! buy! CHEAP! Telefonie VoIP CHEAP! buy! buy! CHEAP!

——————————————–

For the 2012 MLB period, we found an totals forecast Joao’s Renowned Over/Under João Zorro Gonçalves, Zcode Totals Pro, System of the time with progressions that have been successful over 98 98% ... We eventually perfected our over/under program ( Zcodesystemexclusive ), although it h-AS has brought years of investigation. Five Steps to Making a Winning MLB Method: 1. Execute appropriate cash management tools. 2. MLB rules that are comprehend. 3.Extensive testing back to make sure successful longterm results ...

——————————————–

There is always a challenge when you're dealing with the Foreign Exchange Market. That's just the nature of the beast. The best thing you can do is to learn about how the market operates as a whole so that you will be ready to meet these challenges. iq option penipu Never be misled by any profit gains in binary options. This is the number-one way traders end up losing their money and ultimately failing. Remember that the same things that make you laugh can make you cry in this market, and you can lose that $700.

——————————————–

Learning Polish has never been this fun and easy as with our podcasts Learn Polish with Polishpod101 Start today and become conversational in Polish in no time

——————————————–

The Best Website Agen Poker Resmi www.sakupoker.com Terpercaya come join

——————————————–

Do you need edmonton phone systems service ? Call complete communications today!

——————————————–

High-tech solutions for easy start-up of your IPTV/OTT-business

——————————————–

——————————————–

If you want to purchase not only one item, you have a chance to enjoy privileges. There is a sale’ tab on the site which offers a fantastic range of reduced counterfeit watches and accessories, such as sunglasses, cufflinks, watch straps and pens. Luxury Jewelry Replica At MCA.MN On Sale You get a 5% discount if you buy two pieces, this discount increases to 10% if you buy 4 pieces or more. There is free international shipping on all orders on this site. We also offer customers a free return anytime with a 100% money back guarantee.

——————————————–