Driven by escalating cybercrime, the shortfall of skilled cybersecurity professionals is alarming. CSO Online published an article that forecasts 3.5 million unfulfilled job openings for cybersecurity personnel by 2021. That’s an astonishing increase of 2.5 million since 2014.
According to the CSO article, India alone will need 1 million cybersecurity professionals by 2020 to meet the demands of its rapidly growing economy. Even though India has more IT specialists than anywhere else in the world, it’s highly unlikely that even they will be able to produce an adequate number of security experts to meet their needs. In the United States, over one million cyber security professionals are currently needed, but over 350,000 of those positions remain unfilled.
With the escalating number of cyberattacks and limited resources to fight them, it’s critical that organizations leverage their existing security experts to the fullest extent possible. One way of doing that is by consolidating and automating diverse and redundant security tools. While no one should eliminate critical security products, most organizations have numerous security tools from different vendors. Security analysts spend a significant amount of their time managing and gathering information from these diverse products, and manually stitching the data together in an attempt to create a complete picture of a particular threat. Unfortunately, very few organizations, if any, have enough security professionals to handle the load. Most fall woefully short, leaving themselves vulnerable to a data breach.
Because Fortscale Presidio allows organizations to have user and entity behavior analytics (UEBA) built into their existing security products, it’s no longer necessary to have and manage a separate, UEBA point solution. This lessens the burden on security professionals, freeing them up to attend to other duties.
As we move into 2018 and beyond, it’s important for security vendors and organizations alike to start automating and consolidating as many cybersecurity functions as possible. We expect to see more and more enterprises using machine learning, artificial intelligence, outsourcing, and product consolidation to do much of the heavy lifting that today requires human resources.
Taking these steps will help with the shortfall of skilled security professionals, and will free human cyber teams to focus on those things that can’t be fully automated, such as high-risk threats, improving defenses, and adding a layer of human judgement on top of the automation.