Press "Enter" to skip to content

The skills gap and how it impacts security

A report from Phillips highlights spending in mid-sized and large hospitals on cybersecurity.   A key number – more than 13% of hospitals had no inventory and no way of knowing how many medical devices were deployed.      Almost half of all respondents find the staffing they have for medical device and IoT security “inadequate.”  48% of hospital executives had reported a forced or proactive shutdown in the past 6 months as a result of external attacks or queries.

SentinelLab is reporting new malware focused on macOS, highlighting 150 new samples of the AdLoad adware, undetected by Apple’s on-device malware scanner.  

IDC has revealed that more than one third of all organizations globally have faced a Ransomware attack or breach in the past year.     Just 13 percent said they did not pay the ransom.

Colonial Pipeline is sending out breach notification letters to 5,810 current and former employees, revealing their information was accessed by the DarkSide ransomware group during the attack in May.  

And, there are still not enough skilled professionals to meet demand, per the  fifth annual industryreport from the Information Systems Security Association (ISSA) and analyst Enterprise Strategy Group ESG.  A heavier workload (62%), unfilled positions (38%) and worker burnout (38%) are contributing to the skills gap. Nearly all surveyed (95%) believe the gap has not improved in recent years.

Why do we care?

The landscape – there’s a gap in staff, in inventory management, and in a wide open opportunity for criminals to take advantage of, and with just 13% saying they didn’t pay… its easy to see why this is a fast growing threat, because an overwhelming majority of victims DO pay. 

Take those points on skills and consider them in your own business – employee retention is a significant metric right now with labor hard to find and valuable.   Savvy organizations are going to manage that closely.