SANS Survey Explores Path to Closing the Critical Skills Gap for a Modern and Effective Security Operations Center (SOC)

While security staff attrition rates are low, the new survey finds a lack of meaningful cybersecurity metrics being employed at many organizations.

CISOs who can reduce or close their critical skills gaps have the highest probability of minimizing the business impact of cyberattacks – even when budgets and staffing are constrained. This is according to the results of a new SANS Institute survey, “Closing the Critical Skills Gap for Modern and Effective Security Operations Centers (SOCs),” to be released in a two-part webcast on July 29 and July 30.

HR Technology News: Smartsheet Brings Together Government Industry Experts to Form Federal Advisory Board

The survey happened to kick off within days of the World Health Organization (WHO) declaring COVID-19 a pandemic. As such, the results reflect a high degree of uncertainty around future hiring plans as well as an increase in plans to use outsourced services until staffing plans stabilize.

HR Technology News: TecHRseries Interview with Iain Moffat, Chief Global Officer at People First

Even with the future uncertainty brought on by the pandemic, the survey covered staff changes in 2019, qualitative responses on what skills security managers see a need for, which needs they plan on staffing internally, and where they plan on using external service providers.

Other than at very small businesses and in the government vertical, the survey found that turnover and attrition rates for cybersecurity staff is at or below industry averages. Even so, security managers indicated they tend to fall back on attrition as the reason for requesting staff increases, which reflects a lack of meaningful cybersecurity metrics being employed at many organizations.

HR Technology News: Toptal Launches Remote Work Solutions to Help Companies Create Effective Remote Work Environments

Write in to psen@itechseries.com to learn more about our exclusive editorial packages and programs.

CISOsCOVID-19CyberattacksHR TechnologyNEWSSANSWorld Health Organization
Comments (0)
Add Comment