The ever-expanding threat landscape and the continued talent shortage mean defenders increasingly need to be ready with the skilled talent to face the onslaught of cybercriminals, who are gaining momentum by employing new tactics, according to Pamela Nigro, ISACA board chair.
Many longtime employees have retired, and many organizations don't have enough people coming up through the system to help replace them, said Nigro, who also serves as vice president of security and security officer at Medecision.
"The other challenge is that particular skills seem to be wanted - not that they can't be developed, but they tend to be wanted," Nigro said. "And I've seen a lot of opportunities that are entry level that wind up looking for five years' experience."
The industry needs to take a new approach to hiring, she said.
In this ebook with Information Security Media Group at RSA Conference 2023, Nigro also discusses:
- The state of the talent shortage;
- Unrealistic expectations in current hiring practices;
- The importance of enterprises making training a priority.
Nigro also serves as an adjunct professor at Lewis University, where she teaches graduate-level courses on information security, ethics, risk, IT governance and compliance, and management of information systems in the MSIS and MBA programs. She also served as senior director of information security focusing on the GRC practice at Heath Care Service Corp. Prior to HCSC, Nigro worked in the systems and process assurance practice at PwC.