As Cybersecurity Threats TakeCenterStage, 87% see Cybersecurity Skills Shortage in India, says ISACA Survey
Mumbai (Jan. 22, 2015): In advance of US President Barack Obama’s visit to India, which aims to boost ties in cyber security between the two countries, ISACA has releasedthe results of its 2015 Global Cybersecurity Status Report. The India findings of the report reveal that close to one-third (30 percent) of the respondents expect their organization to face a cyberattack in 2015 (compared to 46 percent globally) and a whopping 92 percent believe cyberattacks are one of the top three threats facing organizations today.Yet an alarming 87 percent say there is a shortage of skilled cybersecurity professionals in the country,and only 41 percent feel prepared to fend off a sophisticated attack.
“ISACA supports increased discussion and activity to address escalating high-profile cyberattacks on organizations worldwide,” said Robert E Stroud, CGEIT, CRISC, international president of ISACA and vice president of strategy and innovation at CA Technologies. “As Washington and other government leaders call for action, we hope they take a clear and straight-forward approach, working in close coordination with industry. Cybersecurity is everyone’s business, and creating a workforce trained to prevent and respond to today’s sophisticated attacks is a critical priority.”
The 2015 Global Cybersecurity Status Report survey was conducted fromJanuary 13-15, a week before US President Barack Obama’s State of the Union address, which discussed a range of actions to reduce cyber threats and data privacy risks.The report isbased on online polling of 3,439 ISACA members in 129 countries, including 167 members fromIndia.The survey has +/- 1.7 percent margin of error at a 95 percent confidence level.
Support for Proposed 30-day Breach Notification Law
Survey resultsshow that 88 percent of Indian respondents agree or strongly agree with President Obama’s proposed federal law requiring companies to notify consumers of a data breach within 30 days. When asked about obstacles to timely notification, these respondents ranked company concern about corporate reputationfirst (69 percent), followed by inadequate system design (11 percent), increased cost (8 percent) and insufficient staffing (7 percent).
Another key concern the survey highlighted was the shortage of skilled cybersecurity professionals. In fact, 39 percent of ISACA’s survey India respondents whose organizations will be hiring cybersecurity professionals in 2015 say it will be difficult to find skilled candidates.
“As the world grapples simultaneously with escalating cyberattacks and a growing skills shortage, ISACA believes that it is absolutely essential to develop and train a robust cybersecurity workforce. That is why we launched Cybersecurity Nexus (CSX) in 2014.We take very seriously our role in addressing the skills gap through skills-based credentials, training, guidance and mentoring programs,” noted Stroud.
“President Barack Obama’s State of the Union address shows that cybersecurity threats have taken a center stage at a global level. Going forward, especially as the adoption of the Internet of Things, including wearables and connected devices, increases, governments and organisations need to implement robust cybersecurity policies. India and the US are set to boost bilateral ties in cyber security during President Barack Obama’s visit this month. ISACA’s mission is to help close the global skills gap and equip cybersecurity professionals with the knowledge and guidance they need,” says Vittal Raj, international vice president of ISACA.”
He further added, “At ISACA, it has been our constant endeavor to work with various government bodies and organisations to educate them on the best practices in cybersecurity. In our recent 2015 Global Cybersecurity Status Report, the India data highlights that87% people surveyed said that there is a lack of cyber security professionals in the country. To help the industry address this issue we establishedCSX, which is committed to growing and advancing a skilled cybersecurity workforce through training, education and credentialing.”
ISACA is a global leader in cybersecurity. The association assisted the National Institute of Standards and Technology (NIST) in the development of the U.S. Cybersecurity Framework, and ISACA’sCybersecurity Nexus (CSX) is one of the first and most comprehensive resources to support security professionals at every level of their careers.
In late 2014, ISACA launched the Cybersecurity Fundamentals Certificate, designed for university students and recent graduates, entry-level security professionals, and those seeking a career change. The certificate addresses the global skills shortage by helping organizations quickly identify candidates with a foundational level of cybersecurity knowledge, while helping the most qualified job seekers distinguish themselves.
In October 2015, ISACA will host the first CSX conference in Washington DC to bring together global thought leaders in cybersecurity.
For additional survey results, graphics and insights from cybersecurity experts, visit www.isaca.org/cybersecurityreport . To learn about the credentials, guidance and resources offered in ISACA’s CSX, visit www.isaca.org/cyber.