It’s hard to fill almost any tech role. But it’s ridiculously hard to find good cyber security people. Despite the fact some organisations only need one cyber security analyst for every hundred software developers, that one analyst can be the most elusive.
This even applies to entry-level positions.
Finding a reliable, trust-worthy, inexpensive junior cyber security engineer, with the right blend of skills and talent, has become a holy grail for talent acquisition managers everywhere.
And the problem has become more acute over the last 12 months. Every organisation is now grappling with some form of digital transformation. As digitisation infiltrates every line of business the security footprint expands too, increasing the need for security and a very specific type of security pro. Specialists with the security know-how and business acumen to build security into operations and tie IT to the business.
We know the market is failing to meet this demand. The Global Information Security Workforce study indicates there could be around 100,000 unfilled cybersecurity jobs in the UK by 2022.
We also know that cyber talent comes at a ludicrously high price, even for entry-level hires.
So if you can’t recruit them, what’s the solution?
Squad-as-a-Service for Cyber Security
In a nutshell, QA’s Squad-as-a-Service delivers the exact entry-level cyber security talent you need in a matter of weeks, at a sensible price point.
We identify the right talent, train them in the precise blend of cyber security skills you need and embed them into your organisation over the course of a 12-week programme.
These individuals are already IT professionals with real-world experience and a diverse skill set that’s almost impossible to find on the market at a reasonable price.
Here’s what sets them apart:
- Security knowledge
They’re drilled in the fundamentals of cyber security – National Institute of Standards Technology (NIST), risk management, threat hunting, cloud security and more. And they have certifications to prove it.
- Real-world experience
They’ve already completed a deployment within another enterprise working on programs with a security or privacy component. Some will already have national security clearance.
- Broad IT skill set
They’ve worked for at least 12 months in software development or DevOps positions. This means they have an incredibly rich and multifaceted skill set. They’re Linux natives and are fluent in Java or Python.
- Business acumen
They’re not just security experts, they are also very capable when it comes to processing and assimilating data and creating reports. We’re big believers in the value of soft skills and all of our consultants are astute and proactive communicators.
How we create our cyber tech specialists
Our typical Cyber Squad-as-a-Service programme consists of foundational courses that provide a thorough understanding of the core components of the cyber security lifecycle. This is a vendor agnostic programme to ensure trainees pick up a broad set of practical skills, with courses accredited by the National Cyber Security Centre. Our tech specialists learn using best-of-breed learning platforms and are tested intermittently across the duration of their deployment to guarantee performance.
We also offer more custom programmes. If you need someone with a very specific skill or vendor specialism, then we can add on the requisite training to make sure individuals are up-to-date with the latest thinking on the tool, or system that is important to your organisation. For example, Sentinel or Splunk. And if you have a large job to tackle, we can deploy entire teams with an inbuilt chain of command.
Stop searching. Start securing
Our Cyber Squad-as-a-Service offering is a unique and cost-effective solution to the cyber security skills gap. Within just 12 weeks you can have the exact specialist you need.
But the real value lies in the blend of skills we offer. We’re not just providing dependable security pros. Our cyber tech specialists are also multi-talented IT generalists and that’s critical at a time when the lines between technology disciplines are blurring. Having someone who can code, protect apps and engage line-of-business leaders is an invaluable asset to any organisation looking to bring IT and operations together.
We don’t believe that you can find junior cyber security talent with this breadth experience and skill on the market.
So stop the search for your perfect hire. Talk to us.
Richard Beck is Director of Cyber at QA. He works with customers to build effective and successful learning solutions tailored for business needs, helping to solve business problems. Richard has designed and architected numerous enterprise and nationwide cyber programmes for QA customers. Responsible for the QA cyber portfolio, products, proposition and cyber partner community. He has over 15 years' experience in senior Information Security roles.
Prior to QA, Richard was Head of Information Security for an organisation who underpin 20% of the UK's Critical National Infrastructure. Richard also held Security and Technical Management posts in Defence, Financial Services and HMG. He holds a number of leading cyber professional certifications, including CISSP, CISM, CISA.
Richard sits on a number of industry boards and security advisory panels, and previously chaired the Communication Industry Personnel Security Information Exchange (CPNI). He is the work stream lead for Cyber Skills & Diversity on the techUK Cyber Management Committee, in addition Richard is also supporting a work stream for the UK Cyber Security Council Formation project. Richard is a regular contributor for cyber insights and industry collaboration including speaker engagements.
He is also a STEM Ambassador working to engage and enthuse young people in the area of cyber security. Providing a unique perspective on the world of cyber security to teachers and encourage young people to consider a career in cyber security.
More articles by Richard
Cyber Pulse: Edition 149 | 9 April
Cyber Pulse: Edition 148 | 1 April
Cyber Pulse: Edition 147 | 16 March
Cyber Pulse: Edition 146 | 4 March 2021
Cyber Pulse: Edition 145 | 19 February 2021
Cyber Pulse: Edition 144 | 5 February 2021
Cyber Pulse: Edition 143 | 27 January 2021
Cyber Pulse: Edition 142 | 18 January 2021
CISOs should prioritise the “human firewall” during Covid-19
Cyber Pulse: Edition 141 | 11 January 2021