Access your Pro+ Content below.
Bridging the IT security skills gap
This article is part of the September 2013 Volume 15 / No. 7 issue of Information Security magazine
Dell SecureWorks' business relies on having top talent to run its security operation centers and threat analysis groups. As a managed security service provider in the business of filling the holes in its clients' defenses, the company needs a well-trained workforce. Yet, like most firms, SecureWorks is hounded by a dire scarcity of trained security professionals. The situation is so bad that for every 20 open security positions at the company, there is only one qualified candidate, said Jon Ramsey, the firm's chief technology officer. The company has pursued a number of strategies to improve its chances of gaining the right people, from aggressive recruiting tactics to in-house ‘farm teams' for developing talent, to partnerships with universities. On top of that, the company awards higher salaries to the right people, a necessary tactic that not every company can afford. "The people who need security professionals cannot find them," said Ramsey. "And if the company is not a security business, it is hard to justify paying a ...
Features in this issue
Modern firewalls offer greater application awareness and user controls. Protect your migration strategy with these tips from the pros.
This month's special online multimedia supplement to Information Security magazine details the advanced new features of next-generation firewalls and how to make the most of them.
While poaching security talent may plug short-term gaps, outreach and education will solve the long-term shortfall in IT security professionals.
Global risk management based on the lowest common denominator may not ‘comply' with IP or trade secrets. Analysts see big changes ahead.
Columns in this issue
Analysts expect security concerns to drive global risk management, but executives may need convincing.
Not down with Dropbox? Lee Heath embraced shadow IT and improved his company's data security practices in the process.
Forget the slogans. Reset your security awareness program with actionable information.