The Cyber security skills in the UK labour market 2020 report highlights research into the UK cyber security labour market, carried out on behalf of the Department for Digital, Culture, Media & Sport (DCMS) by Ipsos MORI.
The research explores the nature and extent of cyber security skills gaps (people lacking appropriate skills) and skills shortages (a lack of people available to work in cyber security job roles).
The report estimates that:
▪ Approximately 653,000 businesses (48%) have a basic skills gap. That is, the people in charge of cyber security in those businesses lack the confidence to carry out the kinds of basic tasks laid out in the government-endorsed Cyber Essentials scheme1, and are not getting support from external cyber security providers.
▪The most common of these skills gaps are in setting up configured firewalls, storing or transferring personal data, and detecting and removing malware.
▪ Approximately 408,000 businesses (30%) have more advanced skills gaps, in areas such as penetration testing, forensic analysis and security architecture.
▪ A quarter (27%) have a skills gap when it comes to incident response (and do not outsource this).
Skills gaps are also common in the cyber sector. This extends to both technical and non-technical skills.
▪ Two-thirds (64%) of cyber firms have faced problems with technical cyber security skills gaps, either among existing staff or among job applicants. A quarter (25%) say that such skills gaps have prevented them to a great extent from achieving business goals.
▪ Technical skills gaps are relatively high in each of the following areas: threat assessment or information risk management; assurance, audits, compliance or testing; cyber security research; implementing secure systems; and governance and management.
▪ A total of 3 in 10 cyber firms (29%) also say that job applicants lacking non-technical skills such as communication, leadership or management skills has prevented them to some extent from meeting their business goals, and a similar proportion (28%) say this about their existing employees.
The full report can be read here: Cyber security skills in the UK labour market 2020