IT Security in the Digital World – key challenges facing the industry in 2017

As part of Michael Page Technology’s ongoing digital transformation series we have been talking to industry experts across all technology sectors to find out what their key challenges are and how the industry is evolving and adapting to meet those challenges.

Recently we hosted an IT security seminar in Manchester where a panel of experts fielded questions on a wide range of subjects. We focussed the discussion on the changing shape of IT security in a digital world and on the day we covered a range of topics including security risks that businesses face, how to build security teams and how security can enable digital transformation. 

Of the key talking points discussed, the key skills shortage and lack of staff education and awareness were considered to be key challenges that businesses face both today and moving forward. We took the time to sit down with Graham Thomson, Chief Information Security Officer at The Hut Group and Paul Heffernan, Chief Information Security Officer at Unipart Group, to discuss these challenges in more depth.

All of our panel agreed that the continuing growth of the IT security industry is causing a widening cyber-security skills gap, and one that it is only likely to get worse. This gap between supply and demand poses a real threat to UK companies. There is now so much interest in the industry, with it appearing in the press and on government agendas, that there is a huge talent deficiency raising its head.

The key to tackling this shortage is twofold: attracting more young people into the industry and converting experienced IT professionals from more traditional backgrounds. To the first point, there is no shortage of people entering the IT industry and multiple university courses and training programmes offered which introduce young people into the world of IT security. Engaging with entry level talent and grads by offering internships, learning programmes and being active on social media and in security focussed conferences and meetups can be a great way to open a dialogue with the next generation of IT talent.

We also need to demonstrate to established IT professionals the potential that a career in security can offer. From being an in demand candidate in a growth sector, to a varied and exciting workload there are many reasons people would look at making the move to specialise.

One of the key messages our panel sought to drive home was that an organisation’s cyber security set up is only as strong as its weakest link, only as robust as the least well educated staff member. While data breaches and leaks are more often than not initiated by outsiders, these ‘hackers’ are often able to gain access as a direct result of the actions taken, unwittingly or not, by employees. Given that everyone from the boardroom down has a responsibility for cyber security staff education and awareness is crucial in both preventing a potential breach and in how to handle one should it occur.

Making any education and awareness training you undertake both relatable and manageable is crucial. Trainers need to make the lessons and learnings accessible and an effective way to ensure this is by combining workplace security training with home/personal security. By bridging the gap between personal and professional security we can ensure that employees are learning new skills and taking their security responsibilities seriously.

Find out how we’ve helped companies going through digital transformation secure the right staff. Please contact Zoe Glennen, Associate Director or Graham Rowe, Senior Consultant at Michael Page Technology.

T: 0161 829 0475

E: [email protected]

T: 0161 829 0433

E: [email protected]