Security executives address the industry demand for 225,000 professionals

Recent data indicates that there is a need for approximately 225,200 cybersecurity professionals to bridge the current talent gap. Currently, only 85% of cybersecurity positions are filled, with 1.2 million workers already employed. 

Insights from Security Leaders

Dave Gerry, CEO at Bugcrowd:

“By providing opportunities for career growth and supporting the mission to help customers and the digital community defend against cyberattacks, employees feel empowered to improve themselves and the community as a whole. Employers need to actively recruit from non-traditional backgrounds to expand the candidate pool and provide training to individuals with high potential but without formal degrees. This approach allows diversification in the cybersecurity industry, creating opportunities for income, career advancement, and wealth creation for those who may not have had access to formal training otherwise.

“Organizations should broaden their recruiting efforts, address existing biases in cyber-recruiting, and offer thorough training through apprenticeships, internships, and on-the-job programs to develop the next generation of cybersecurity talent.”

Gareth Lindahl-Wise, Chief Information Security Officer at Ontinue:

“There is a clear shortage of skilled cyber professionals today. To close the skills gap and strengthen the cybersecurity workforce, we must incentivize training hours, offer rewards for training efforts, and encourage job shadowing and knowledge sharing.

“Internships, sabbaticals, and job-sharing opportunities can accelerate real-world experience. Technical qualifications are not the main issue; we need to nurture talent effectively to meet the demand.”

Tim Callan, Chief Experience Officer at Sectigo:

“Beyond stagnant salaries and high stress levels, enterprises should consider offering appealing career advancement options to their employees. Embracing modern technologies, such as AI, and automating routine tasks can improve work environments, reduce stress, and encourage tech-savvy professionals to stay in the industry.”

Dean Webb, Cybersecurity Solutions Engineer, Merlin Cyber:

“The rapid rise of AI tools in cybersecurity presents challenges for the cyber workforce. While AI-driven defensive tools can counterbalance AI attacks, the automation of phishing and social engineering attacks poses a threat to untrained individuals. We need to enhance automated defenses in corporate and personal communications to combat AI-enhanced social engineering.”

Omri Weinberg, Co-Founder and CRO at DoControl:

“The cybersecurity skills gap is prevalent across various industries and company sizes. To address this, individuals should be trained to see the broader picture of the security industry, allowing them to cover multiple skill areas and reduce the overall skill shortage.

“Improvements in the HR process are necessary to identify and hire talent in the cybersecurity industry. There are numerous untapped resources in the market that can contribute significantly to the industry. Hiring managers and HR representatives should work together to assess candidate qualifications and cultural fit more effectively.

“Companies should continue promoting and offering cybersecurity training programs to expand their talent pool and prepare employees for the evolving cybersecurity landscape.”

Sunil Muralidhar, Vice President at ColorTokens:

“While addressing the current cyber skills gap is crucial, we must also prioritize the mental health and stress levels of cybersecurity professionals. To support team members’ well-being, managers should encourage personal connections, practice empathetic listening, promote physical activity, advocate for time off, respect personal time, foster a growth mindset, and stay attentive to behavioral changes.”