Cybersecurity Careers And Professions
Cybersecurity is a fast-growing field of IT concerned with reducing the risk of an organization experiencing hacking or a data breach. In an annual survey by Enterprise Strategy Group with IT professionals in organizations across the globe, 45 percent of organizations said that they had a "problematic shortage" of cybersecurity skills in 2016, up from 42 percent in 2015 (Oltsik, 2019). Commercial, governmental, and nongovernmental organizations employ cybersecurity professionals. The fastest increases in demand for cybersecurity workers are in industries managing increasing volumes of consumer data such as finance, health care, and retail. However, the use of the term cybersecurity is more prevalent in government job descriptions.
Reference
Oltsik, J. (2019, January 10). The cybersecurity skills shortage is getting worse. [Blog post]. ESG. Retrieved from https://www.esg-global.com/blog/the-cybersecurity-skills-shortage-is-getting-worse
In your discussion, include the following considerations:
Research the government agencies listed for cybersecurity focus. What is the intent of the agencies and core of their mission? How successful have they been in supporting cybersecurity? Is this intention woven into their mission statement and vision?
Familiarize yourself with the varieties and subtle differences in cybersecurity professions and describe your impressions. Are there new titles? More current? What are the differences and similarities (if any)? What skills, talents, or characteristics are needed to succeed in the professions you are examining?
Review information for cyber analysts and other titles in related areas. Which positions appeal to you? Why? Do you have experience in this field? What did you find interesting? What skills, certifications, or experience are needed to succeed in that position?
Security Consultant/Specialist/Intelligence
Protects computers, networks, software, data, or information systems against viruses, worms, spyware, malware, intrusion detection, unauthorized access, denial-of-service attacks, and an ever increasing list of attacks by hackers acting as individuals or as part of organized crime or foreign governments. These broad titles encompass any one or all of the other roles or titles tasked with cybersecurity.
Sample Solution
Security consultants and specialists are vital to the protection of computers, networks, software, data, or information systems against viruses, worms, spyware, malware, intrusion detection and unauthorized access. Security consultants provide guidance regarding technology-related risks and recommend preventive measures to guard against potential threats. They
may design security policies and procedures as well as train personnel in cybersecurity practices. Security specialists focus on technical details such as network defense techniques and tools used for vulnerability assessment.
Security intelligence professionals specialize in researching malicious activities online. These experts can detect patterns of activity related to cyber crimes such as distributed denial-of-service attacks (DDoS) or identify new trends in emerging digital threats. Their knowledge of attack vectors is applied to create monitoring systems that help prevent incidents before they happen by identifying indicators of compromise (IOCs), suspicious files or user behavior which could indicate a breach has occurred or is imminent.
To succeed in these positions requires technical acumen but also an understanding of business needs from a security perspective such as risk analysis/management processes; regulatory compliance requirements; system architectures; identification & access control mechanisms; network protocols & architecture; encryption algorithms and key management methods; threat modeling & attack surface analysis etc… Soft skills such as communication abilities and organizational talents are also valuable traits for successful security analysts/consultants/specialists/intelligence professionals who need to be able to convey complex ideas simply and effectively while juggling multiple projects at once within tight deadlines often requiring working nights & weekends during critical incidents or change windows .
Certifications like Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC) Security Essentials certification can boost employability prospects.. In addition hands on experience using modern security tools like web application firewalls , Endpoint Protection Tools , Vulnerability Management Platforms are also highly sought after qualifications enabling them to find job openings ranging from mid level entry positions up through CTO / Chief Information Officer roles depending upon their skill sets & experience levels .