National Cybersecurity Alliance CEO shares tips to combat security talent shortfall
Forty-four percent of 1,100 senior executives at large companies around the world, including healthcare organizations, say a shortage of skilled workers is a major barrier to better data security.
That’s according to the “2016 Vormetric Data Threat Report,” published by data security technology vendor Vormetric and IT research and consulting firm 451 Research.
Healthcare chief information security officers know well that a highly trained, intelligent workforce is critical when trying to address the myriad cybersecurity threats today. But technology itself is working against CISOs trying to staff up.
The explosion of connected technologies is making it more challenging for security leaders to find talent versed in this widening array of technologies and related threats, said Michael Kaiser, CEO of the National Cybersecurity Alliance, which works through public/private partnerships to create and implement education and awareness efforts.
“Even when we were in the desktop/laptop/mobile phone world, there already was a shortage of cybersecurity professionals, people trained to protect networks,” Kaiser said. “Now we have the next generation of technologies, which are connecting not just computers and mobile devices but, in a healthcare setting, things like medical devices, connected devices in patients’ homes and web-enabled elements of physical facilities. As a result, there is a growing need for people who are trained in protecting the networks of today with all these connections, and in making good decisions about what kinds of services and software should be purchased to protect these networks.”
Healthcare organizations need to start finding “farm teams” where they can recruit good people to secure their networks.
“Healthcare executives should create relationships with four-year and two-year educational institutions in their area to possibly influence the kinds of training delivered and encourage students entering the field to consider working in the healthcare industry,” Kaiser said.
Sign up for the Healthcare IT News Privacy & Security Update newsletter.
Executives looking for quality workers to take on cybersecurity also should look within their own organizations for people who might fit some of the bill and could be trained in other areas, Kaiser suggested.
“Find people internally who might have some of the knowledge and skills already, or have what looks like the kind of profile that would be good in cybersecurity, for instance they are really good at problem-solving, taking initiative and communicating,” he said. “See if such individuals would want additional training or to be retrained to work in cybersecurity. That could be quite beneficial since they have knowledge of the healthcare industry, which is a big part of the battle.”