View from the airport: (ISC)2 Security Congress 2019

Cyber attacks may be heading to into space, but much greater threats to the industry are afoot

View from the airport terminal

The sun has set, I've watched my last street performer and witnessed my last 10pm firework display, but I'm leaving Walt Disney World and (ISC)2 Security Congress in Orlando feeling learned and confident for the future of the industry. Let me explain.

The most apparent and uplifting focus of the event was the emphasis placed on addressing the ever-widening skills gap in the cyber security industry. Experts speaking this week were the first to admit that they, and the industry as a whole, have contributed to issue it's cyber security's own undoing.

Advertisement - Article continues below

Everyone seemed to agree that the industry must be demystified, the rampant acronyms must be stopped and the language must be made more accessible for a newbie, drastically reducing the barriers to entry.

Across the event, sessions on career guidance could be found all over and unsurprisingly they were extremely well-attended from budding cyber security professionals to those who had been in the industry for more than 20 years. Developing a deeper understanding of the careers within cyber security and how to navigate ones way further to the top was clearly on everybody's agenda.

This year's event welcomed more students than ever before, around 150 were in attendance thanks to discounted entry so they could explore the possibilities of a career in the field. While every effort was made to get more young people into the event, what was alarming was the number of experienced attendees looking for a way out.

Advertisement - Article continues below
Advertisement - Article continues below

As a disclaimer, I only went to a fraction of the career-centric sessions on offer, however, the number of attendees (and even the speakers in some cases) that were openly grieving about their lengthy experiences with burnout was a serious cause for concern.

One attendee spoke about his five-year stint with burnout and expressed confusion about where to go: Management didn't appeal to him and a lack of cyber firms in his region means he can't move laterally to find a new challenge. In jovial fashion, the same man stood up after the session ended inviting all the others who told of their career strifes to join him in the hotel bar to form a "burnout support group". The first round was on him.

Aside from the turbulent topic of careers, the usual chatter and speculation were on the cards regarding experts' thoughts on the threats of the future. The most interesting for me was from (ISC)2 board member Tony Cole who said space-based hacks will be more prevalent as we send more and more people to space.

Advertisement - Article continues below

Emerging technologies and Industry 4.0 will invariably create more problems for cyber security practitioners than they will solve, let's just hope this isn't enough to deter those looking to get stuck into a profession that's renowned for playing a perpetual game of catchup with the bad guys.

In sum, I won't miss the unrelenting clinking of metal-on-metal lanyards ruining my audio recordings of each session, but the venue and the people who were all up for a friendly chat have made it one of the most accessible and enjoyable events I've ever been to.

It's without a doubt a must-attend for any young budding cyber security professional and the focus on diversity with a broad selection of speakers and tailored ethnic minority networking events means its an event that has its arms open to all.

There is a nagging feeling, though, that the focus on inclusion could be symbolic of the industry's desperation to attract any and all talent that it can. The morality behind casting a wide net is still present, but also it's now being superseded by the sheer necessity to get anyone into the field. Gone are the days where a specialist degree is needed to get a job in infosec. No coding knowledge? No CISSP? No problem. A push to expand STEM applicants to include the arts too (STEAM), means anyone can pursue cyber security it's just about making people realise it.

Advertisement - Article continues below

Michael Leland said if we took every college student in America right now and put them in a vacant cyber role, there would still be a shortage of skilled workers. Just like Shakira's hips, the numbers don't lie and they're screaming at the industry to do better when it comes to attracting talent.

Deshini Newman, MD of EMEA for (ISC)2 said more role models are needed to attract younger people into the industry, especially young women. Others said the high salaries associated with a career in cyber should also be highlighted to a greater extent. There may not be a single correct answer, but every avenue must be explored if the industry wants to avoid reaching a breaking point.

Featured Resources

Preparing for long-term remote working after COVID-19

Learn how to safely and securely enable your remote workforce

Download now

Cloud vs on-premise storage: What’s right for you?

Key considerations driving document storage decisions for businesses

Download now

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Transforming productivity

Solutions that facilitate work at full speed

Download now



University of California gets fleeced by hackers for $1.14 million

30 Jun 2020
cyber security

Australia announces $1.35 billion investment in cyber security

30 Jun 2020
cloud security

CSA and ISSA form cyber security partnership

30 Jun 2020
Policy & legislation

Senators propose a bill aimed at ending warrant-proof encryption

24 Jun 2020

Most Popular

Business operations

Nvidia overtakes Intel as most valuable US chipmaker

9 Jul 2020

How to find RAM speed, size and type

24 Jun 2020
cyber attacks

Trump confirms US cyber attack on Russia election trolls

13 Jul 2020