Canadian Cyber Security Journal
Filed under: Careers, Featured

Breaking Down Cybersecurity’s Hiring Problem

A job-hunting expedition can be a long and stressful journey. I took a glance at LinkedIn in preparation for writing this newsletter, and I saw many descriptions of entry-level cybersecurity jobs asking for several years of work experience, proficiency in multiple programming languages, and prior involvement in online cybersecurity communities, as well as a rock star personality. Companies say they want a lot from their prospective employees, and it’s hard for many people to measure up to those standards.

It’s no surprise that job recruiters are having trouble filling positions for entry-level cybersecurity positions. The problem goes beyond intimidating job descriptions. As Copado vice president of security Kyle Tobender’s TikTok videos about entry-level cybersecurity job postings note, many jobs require certifications or advanced degrees. These are big asks for entry-level positions.

Will this be enough to jumpstart the lagging cybersecurity workforce in the US? Or are there changes to be made within the broader corporate hiring culture regarding gatekeeping? Let us know your thoughts in the comments.

Like what you’re reading? You’ll love it delivered to your inbox weekly. Sign up for the SecurityWatch newsletter.

Many of us rely on online services for communication, entertainment, and work. That’s why we hear about frequent attacks on various online services, from phishing YouTube creators to a Twitch database breach. However, a recent report from Nordlocker shows ransomware attackers are more interested in a different kind of target.

Construction and manufacturing companies are the top two industries hit most often by ransomware, according to Nordlocker’s data based on an analysis of 1,200 ransomware cases. However, Tech and IT businesses are just the sixth most targeted. Finance, healthcare, and education came in third, fourth, and fifth, respectively.

If a ransomware attack hits you, you probably won’t know it until it’s too late. Ransomware doesn’t show the usual signs of malware. You’re more likely to get a message demanding payment in exchange for your files once the attacker has encrypted them. However, if you find yourself on the wrong end of such an attack, we don’t recommend paying the ransom. It’s better to prevent ransomware in the first place by investing in ransomware protection and avoiding phishing scams.

Enjoy this article? Don’t forget to share.