FireEye Breach - Supply Chain Risks and the Importance of People
Deidre Diamond
Founder and CEO, CyberSN | Founder, Secure Diversity | Co-Founder, Day of Shecurity Conference | Cyversity Board Member
Friends,
Breaches can be significantly reduced by hiring talent. Duh, right? I know! Then why aren't most security leaders given budgets to hire talent from outside specialized staffing firms until the roles have been open 8 months? I have been sharing this fact for six years now. We don't see this problem in IT or SW staffing, where I spent 13 years. So why security?
This week’s breach announcements show how tools alone won't protect us. Yes, we are short lots of people in our field. Yet no one organization can use that challenge as a reason they can't fill their jobs. 87% of the market is open to discussing a new role if the role is a good fit (LinkedIn). Nationally, we see security leaders not able to use outside staffing agencies unless the role has been open for 8 months on average (CyberSN and Chenxi Wang Hiring Report). Recruiting this talent is very possible. Cybersecurity talent is hard to get to and harder to match jobs and internal recruiting can’t be expected to find and match this niche skill.
Read our latest blog, from CyberSN CSO and Chief Strategist, Dom Glavach, about his take on the FireEye Breach and the importance of a talent strategy.
I share this information because I care and I have compassion for our security leaders. I know first-hand that our protectors aren't funded correctly for hiring talent and thus breaches will increase.
Much love,
Deidre
Founder and CEO, CyberSN | Founder, Secure Diversity | Co-Founder, Day of Shecurity Conference | Cyversity Board Member
3 年Truly mind blowing and not sustainable!
President - Cyber Security and Artificial Intelligence Recruiters
3 年Yes... Yes.... amazing with how much is at risk!
Desktop / Field Support Analyst
3 年Maybe it could be either they ARE not looking outside the BOX or it could the Snowden effect. Afraid someone they get from a contract company may Steal their Secerts.
Nothing more frustrating Deidre Diamond than not being able to leverage the expertise of companies like CyberSN because of short sighted hiring policies. And then we wonder why when we finally are able to fill a position we have zero diversify! To smarter hiring in 2021!
Founder and CEO, CyberSN | Founder, Secure Diversity | Co-Founder, Day of Shecurity Conference | Cyversity Board Member
3 年Cameron McEachern thanks for those points. It is true that people think the shortage of cyber talent means I have to go to the big consulting firms and pay a premium. Truth is, 82% of professionals are open to a recruiting call, these stats are in my blog. Bottom line is that bringing cyber talent in house is possible with specialized staffing support :)