ISACA’s latest State of Cybersecurity Report has found that it’s getting tougher to fill cybersecurity positions, with many organisations waiting three months or longer.
#ISACA's 2019 State of #Cybersecurity 2019 report was announced today at #RSAC. Learn more https://t.co/66m3ynXrON pic.twitter.com/WqR6GFR7KP
— ISACA Global (@ISACANews) March 4, 2019
Following the release of this report and these findings, Chris Morales, head of security analytics at Vectra, has shared some thoughts.
Chris Morales, Head of Security Analytics at Vectra:
“Organisations can simply put their attention on staffing, they must address the retention challenge as well. The low rate of retention is linked to the tooling organisations give to their security analysts. According to the Cyenthia Institute, one in three SOC analysts are job hunting and according to the survey Vectra conducted at Black Hat 2018, nearly half of the 892 respondents said the least satisfying aspect of their job is reviewing security alerts to determine if there is a threat or not.
Too many threat detection products produce alerts must be triaged, scored and prioritised by a person, resulting in alert fatigue. Organisations from Texas A&M to Ottawa Hydro are using AI to perform the manual mundane work of alert triage, scoring and prioritisation so security analysts can focus on incidents that represent the great risk to their organisation. This increases the retention of security analysts and train the next generation workforce.”