There's A Skills Shortage Gap In Cybersecurity
The skill shortage gap in cybersecurity is way overhyped to distract from the fact that vendors have designed such complex systems that customers or partners need highly advanced practitioners to run them, according to Mimecast Chief Operating Officer Ed Jennings.
Businesses should be able to cross-train intelligent technologists to work on the cybersecurity team, but Jennings said a fixation by vendors on building overly complex, bespoke systems has made that very difficult to pull off. That's because vendors too often layer in another technology to boost efficacy by 0.5 percent to help solve for an uber-sophisticated advanced persistent threat scenario, Jennings said.
In reality, though, Jennings said most breaches occur because of a known vulnerability, an unpatched server, a user clicking on a phishing link, or a door left open to a privileged account. Jennings said user awareness education and training and two-factor authentication can go a long way toward addressing the straightforward configuration issues most businesses face without having to reinvent the wheel.