Story image

Could ‘Mr. Robot’ help solve the cybersecurity skills shortage crisis?

31 Aug 17

Popular culture, whether it be reflected upon film or TV, has always been a prism through which individuals view the values and topics that interest our society. Lately, we’ve seen the infamous ‘Mr. Robot’ garner the equivalent of a cult following and we’ve seen blockbusters like ‘The Girl with the Dragon Tattoo’ and ‘Black Hat’ give cyber security the Hollywood treatment.  

Typically Hollywood portrays cyber security and hacking with storylines involving a criminal hacker that’s normally a brilliant outcast sought after by the FBI, the CIA or a similar body who is then excused of all criminal actions to help save the day. While this is a much more glamorous representation of security and hacking compared to the actual reality, what does this actually mean for the industry?

Of course, there’s no denying that Hollywood has a tendency to beautify and at the same time, oversimplify security stories, they do know a thing or two about generating publicity. In the midst of a cyber security hiring crisis, led by a skills shortage, could these movies and TV shows renew interest in STEM Education and create the next Alan Turing or the next generation of ethical hackers?

It’s no big secret that one of the biggest problems facing the cybersecurity industry is that it is nearly impossible to keep pace with the growing volume and complexity of cyber attacks launched by organised crime syndicates and hacktivists. Exacerbating this problem is the fact that fewer students are interested in computer science.

According to a report by the Center for Strategic and International Studies, 88 percent of Australian IT decisions makers believe that there is a shortage of cyber security skills in their organisation as well as the nation. Alarmingly, findings from the report also revealed that almost half of Australian businesses felt that they were a target for hackers due to limited cyber security.  

While the cyber security skills shortage seems to be an issue worldwide, there are some nations taking significant steps forward to address this. In the UAE, the European Aerospace and Defence Giant partnered with the Khalifa University of Science, Technology and Research to provide cyber security training. This is just one of the many examples of foreign companies creating partnerships with local academic groups to help the UAE fulfil its goals of creating a knowledge-based workforce.

So, in addition to hoping that popular culture will help increase the attractiveness of cyber security careers, what else can be done to stoke the educational fires? Here are two steps to consider:

Create an academic pipeline for cyber security experts, starting in primary school, not high school. More STEM investment, earlier, means there will be a better chance of creating the next Elliot Alderson.

Consistently define career opportunities for students, and help them understand the various kinds of roles that may be available to them: penetration testers, vulnerability researchers, malware researchers, forensic specialists, cryptography engineers, etc.

With the advanced threats that comprise today’s security landscape, identifying and leveraging our young and brilliant minds is the way forward. Who knows where the next great mind will come from, and more importantly, what kind of technology one person may develop that could swing the cyber war in the good guys’ favour?

Article by Graeme Pyper, regional director, Australia and New Zealand at Gemalto.

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.
Symantec and Fortinet partner for integration
The partnership will deliver essential security controls across endpoint, network, and cloud environments.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.
25% of malicious emails still make it through to recipients
Popular email security programmes may fail to detect as much as 25% of all emails with malicious or dangerous attachments, a study from Mimecast says.
Google Cloud, Palo Alto Networks extend partnership
Google Cloud and Palo Alto Networks have extended their partnership to include more security features and customer support for all major public clouds.