ISACA Security Survey 2023: Technical Skills Gaps, BudgetingISACA's Jon Brandt Discusses Threat Trends, Hiring Challenges, New Opportunities
What kinds of training do security professionals need? The biggest skills gaps are soft skills - 55%, cloud computing - 47%, security controls - 35%, coding skills and software development - both at 30%, according to ISACA's State of Cybersecurity 2023 survey of more than 2,000 security leaders globally.
In the survey, ISACA, a nonprofit training and certification association, explored the ongoing cybersecurity staffing shortage, budgets trends and the need for organizations to build these in-demand skills, said Jon Brandt, director of professional practices and innovation, ISACA. "It is impossible to expect that every practitioner is going to have every skill necessary," he said.
Brandt said it is "imperative" for companies to create organizational training programs for employees. "You may be a larger enterprise and have a formal program and even a department to cover that," he said. "In your small to medium enterprises where you might not, then you might need to look into who's going to cover those costs," he said.
In this video interview with Information Security Media Group, Brandt discussed:
- The current state of cybersecurity workforce shortages and skills gaps;
- Trends in staffing and cybersecurity budgets;
- How security professionals can stay up to date with the rapid advancement in AI technologies.
Brandt leads emerging technology, information technology, information security, privacy and risk thought leadership initiatives at ISACA. He serves ISACA departments as a subject matter expert on information security and spearheads innovative workforce readiness solutions and related performance assessments. Brandt has nearly 30 years of experience spanning multidisciplinary security, cyber operations and technical workforce development.