TFL Incident Response Jobs
TLF and DCL Search have incident response jobs available on our website in the cyber security section.
The cyber security industry has faced well-documented challenges in recruitment and employment, a problem that has only been exacerbated by continued discussion of the skills gap. But despite these issues, Louise Barker, head of talent at NCC Group, thinks it’s important to celebrate the successes that the industry has achieved in employment and understand what we can do to continue attracting talent to the sector.
The cyber security employment landscape
A report published by the government last year revealed that there are over 30,000 – and as many as 40,000 – staff employed in the UK’s cyber security sector, with over 800 firms providing cyber security products based in the country.
These numbers are encouraging, but even more impressive is the fact that the number of active firms has grown by more than 50% over the last five years, with over a hundred new businesses entering the sector within the last two years. This surge in new entrants to the market can help to make the industry more attractive for prospective employees, particularly as there are no signs that this growth will decelerate in the near future.
These employment figures aren’t just constrained to the capital, either, with the report also revealing that the North West is responsible for 29% of cyber security employment in the UK, with 22% in the South East. This is promising for businesses that are concerned about prospective employees and opportunities being poached by London-based organisations.
Sustaining this growth is going to necessitate careful strategies from businesses within the sector to ensure that talent is being channelled into it and that every possible step to narrowing the skills gap is taken.
What is the government doing to help?
Previously, the cyber security market’s relative infancy may have hindered recruitment of talent into the industry, with no widely accepted definition of a cyber security professional and no gold standard qualification to work towards.
However, the government is addressing this by making up to £2.5m of funds available to establish a new Cyber Security Council in the UK, which is due to start work in April this year. Combined with the ongoing work of the Cyber Security Body of Knowledge (CyBOK), these initiatives will help to establish professional standards further, deliver certifications and provide access to defined career pathways,
Such initiatives should be welcomed, but cyber businesses also have a responsibility to attract and capture talent by informing potential security professionals about the variety of roles available, and the diverse career pathways they can take to achieve success in the industry.
How can cyber security businesses play their part?
The skills gap can’t be forgotten, and Cybersecurity Ventures has predicted that there will be 3.5 million unfilled cyber security job openings by 2021, meaning that the industry needs to tap into new and existing talent pools now.
Many businesses within the industry already understand the importance of graduate schemes and internships in attracting talented young people, and a lot of work is being done to ensure that they understand the value of studying computer sciences and related disciplines.
What isn’t stressed quite so much is the value of the skilled workers from other sectors, who might not think that a career in cyber security is attainable for them and that many can utilise the transferable skillsthey already have to make an impact in the industry.
The perception outside of the sector is that many of the roles are too technical, with many unsure how their skills can be put to use. But by advertising in the correct channels, and showcasing the talent already working within the industry, we can help to change this perception. This will subsequently help to attract technical writers, sales, risk managers, recruiters and more – again helping to change this perception even further.
Additionally, developers, network engineers and Active Directory specialists can all apply their expertise into more technical roles in the industry in an assessing and testing capacity. With a supportive and scalable framework in place, there is no reason that individuals from a diverse range of backgrounds can’t achieve a solid career in cyber security.
This is also true for internal talent, and we have seen success in this area first hand: after developing a deeper interest in developing his technical skills, one of our technical recruiters recently qualified as a Security Consultant.
Working together
The recently published UK Government Cyber Security Skills Strategy also acknowledges the importance of attracting individuals from other areas, and has moved from discussing the concept of cyber security skills to the concept of cyber security capabilities to reflect that what is required is “the right blend and level of skills in a truly secure digital economy”.
In practice, this means that cyber security should both be embedded across the workforce and become a facet of a wider range of roles like basic financial or commercial literacy, but also that greater efforts are required to unlock untapped talent in less technical areas of cyber security.
Again, the Government has also pledged to support this path by demystifying cyber security careers, with plans to introduce Cyber Security Skills Ambassadors to promote cyber careers for a wide range of individuals. Other recommendations suggest increasing the provision of non-technical modules in higher and further education cyber security courses and increasing the involvement of the industry in the development of such courses.
Demand for talent – both technical and otherwise – within the cyber security industry is only set to increase in the coming years, and businesses need to lay the foundations to facilitate this growth as soon as possible to ensure that the skills gap doesn’t come to widen any further. By thinking laterally and helping to change perceptions about the industry at large, we can continue to ensure that talented individuals can make the leap to a new career, bolstering employment for a thriving industry in the process.
source informationage
Industry: Cyber Security News
Latest Jobs
-
- Data Protection Officer (DPO)/ Risk Manager
- London
- 65000 plus benefits
-
Data Protection Officer with a strong focus on risk management is needed for this expanding Paytech business. You will work closely with the CISO to help understand how the data is being processed within the business and identify the business risk associated with this. this role will be both internally and externally focused As the business processes payments across the globe, they require someone with knowledge of the different data regulations, GPPR, CCPA. This role is focused on helping to identify potential business risks associated with the data usage and ensuring that issues are flagged to the relevant teams within the business.
-
- Security Monitoring and Vulnerability Analyst, End User. PCI Level 1 Service Provider.
- Unknown
- 50000
-
CH7843 Security Monitoring and Vulnerability Analyst, End User. Level 1 Service Provider. £50,000 London Security Monitoring and Vulnerability Analyst needed to join an Level 1 Service Provider. The Security Analyst will be responsible monitoring, configuring, fine tuning and generally improving the security tool capability. Specific experience with Tripwire Log Center and Tripwire Enterprise is highly desirable. Other security tools experience should include the managing and monitoring of firewalls, Anti Phishing, AV, vulnerability management, IAM etc. Current experience with Vulnerability management and penetration testing is highly desirable. Specifically the ability to effectively manage 3rd party pen tests. Hands on penetration testing is a very nice to have. You will be working within a specialist security team reporting to the CISO. Experience working within an end user environment within financial services is highly desirable. Flexible location. This is an exclusive role to DCL Search & Selection. https://calendly.com/chris-holt/arranged-call-with-chris-holt-soc-role-clone
-
- Internal Security Auditor, Level 1 Service Provider (ISO27001)
- London
- Upto 65,000 plus benefits
-
Internal Security Auditor ISO 27001, PCI, needed to join a Cyber team within this expanding Fintech business. The Internal Security Auditor will have end to end responsibility for planning, delivering, remediating any findings etc. Experience working within financial services is highly desirable. This Is a great time to join a newly formed and growing Cyber team within a rapidly expanding fintech, that is taking a major share of its market. We are looking for someone with experience, (but not to be limited to) a mix of Information Security standards, frameworks, audit principles, controls / policies and the management and use of the technical tooling etc. ISO 22301, ISO 27001, NIST Cybersecurity Framework etc An ideal candidate will be working within an end user environment with a cyber consultancy background. Experience taking a company through accreditation is highly desirable Experience managing internal stakeholders, technical teams and external third parties essential Flexible working, but with the ability to get into London. This is an exclusive role to DCL Search & Selection.
-
- DevOps Engineer with IdAM
- London
- Upto £80,000 plus benefits
-
We are ooking for an DevOps engineer, idealy with IdAM (identity access Management) experience, this is a senior role for someone that can be the lead hands on person on a project. Your role will be to work on the deployment project implementing the solution into the exsiting application so will be used to connect an applications into mulipe 3rd party appliactions. We Would look at someone who has done DevOps with Security and can cross train into IdaM, but preference would be given to someone with the IdAM experience this is a great opportunity to join a consultancy that work on some truely amazing and differnet solutions