Professional Certifications & Continuous Training , Training & Security Leadership , Video

ISACA Security Survey 2023: Technical Skills Gaps, Budgeting

ISACA's Jon Brandt Discusses Threat Trends, Hiring Challenges, New Opportunities
Jon Brandt, director of professional practices and innovation, ISACA

What kinds of training do security professionals need? The biggest skills gaps are soft skills - 55%, cloud computing - 47%, security controls - 35%, coding skills and software development - both at 30%, according to ISACA's State of Cybersecurity 2023 survey of more than 2,000 security leaders globally.

See Also: The State of Enterprise Mobile App Security 2023: Results Analysis

In the survey, ISACA, a nonprofit training and certification association, explored the ongoing cybersecurity staffing shortage, budgets trends and the need for organizations to build these in-demand skills, said Jon Brandt, director of professional practices and innovation, ISACA. "It is impossible to expect that every practitioner is going to have every skill necessary," he said.

Brandt said it is "imperative" for companies to create organizational training programs for employees. "You may be a larger enterprise and have a formal program and even a department to cover that," he said. "In your small to medium enterprises where you might not, then you might need to look into who's going to cover those costs," he said.

In this video interview with Information Security Media Group, Brandt discussed:

  • The current state of cybersecurity workforce shortages and skills gaps;
  • Trends in staffing and cybersecurity budgets;
  • How security professionals can stay up to date with the rapid advancement in AI technologies.

Brandt leads emerging technology, information technology, information security, privacy and risk thought leadership initiatives at ISACA. He serves ISACA departments as a subject matter expert on information security and spearheads innovative workforce readiness solutions and related performance assessments. Brandt has nearly 30 years of experience spanning multidisciplinary security, cyber operations and technical workforce development.

About the Author

Anna Delaney

Anna Delaney

Director, Productions, ISMG

An experienced broadcast journalist, Delaney conducts interviews with senior cybersecurity leaders around the world. Previously, she was editor-in-chief of the website for The European Information Security Summit, or TEISS. Earlier, she worked at Levant TV and Resonance FM and served as a researcher at the BBC and ITV in their documentary and factual TV departments.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.