Cybercrime, already a $445 billion business, is showing no signs of slowing down. Combating organized, sophisticated cyber rings takes the right technology and talent. It gives me pause every time I consider the well-documented skills shortage in cybersecurity, which is expected to reach 1.5 million unfilled positions by 2020. Closing that gap is daunting, and requires us to find and nurture different types of talent in new ways.

Out With the Old, In With the New Collar

The private and public sectors have already started to develop some creative solutions. They are looking at new education models, boot camps and security certifications, and increasing the number of colleges and universities with cybersecurity programs.

At IBM, we have been addressing the skills gap by training pre-college students in technology, helping universities develop curricula and providing programs for early professionals. We are also contributing to this effort by creating what we call “new collar” jobs.

Today, we are releasing an executive report, “It’s Not Where You Start — It’s How You Finish: Addressing the Cybersecurity Skills Gap With a New Collar Approach,” that looks at IBM’s new collar approach to closing the skills gap. The report defines new collar roles, which prioritize skills, knowledge and a willingness to learn over degrees and traditional work experiences. It also outlines how enterprises can pursue a course similar to IBM.

A new collar approach is characterized by:

  • New employee profiles: Consider skills, not degrees earned, as a prerequisite to attract nontraditional candidates with diverse backgrounds and abilities.
  • New types of roles: Restructure work around the specific skill sets and knowledge required by emerging technologies.
  • New partnerships: Develop relationships with federal and state government programs, community colleges, K-12 school programs, nonprofits, cyber competitions and veterans training programs.

Slow and Steady Wins the Race

Fast Company recently noted that IBM and other technology companies are embracing new types of workers to fill the IT jobs of today and tomorrow. With an eye toward new collar jobs, enterprises can boost the number of potential candidates who can rapidly get to work, provide fresh and diverse ideas, and bring practical hands-on experience. Organizations that only rely on traditional four-year schools to meet their needs will continue to struggle with the cybersecurity skills gap.

It doesn’t matter where employees start their race; it’s all about how much they contribute and how far they are willing to go. What matters are their skills and experiences, not where they got them.

Stay Up-to-Date

Learn more about the new collar approach and get the latest insights on how IBM is helping security leaders tackle their toughest challenges, including the skills gap.

We invite you to download the complete executive report and also to watch the accompanying webinar, “It’s Not Where You Start – It’s How You Finish.”

Read the report: Addressing the Skills Gap with a New Collar Approach

More from CISO

Do You Really Need a CISO?

2 min read - Cybersecurity has never been more challenging or vital. Every organization needs strong leadership on cybersecurity policy, procurement and execution — such as a CISO, or chief information security officer. A CISO is a senior executive in charge of an organization’s information, cyber and technology security. CISOs need a complete understanding of cybersecurity as well as the business, the board, the C-suite and how to speak in the language of senior leadership. It’s a changing role in a changing world. But…

2 min read

What “Beginner” Skills do Security Leaders Need to Refresh?

4 min read - The chief information security officer (CISO) was once a highly technical role primarily focused on security. But now, the role is evolving. Modern security leaders must work across divisions to secure technology and help meet business objectives. To stay relevant, the CISO must have a broad range of skills to maintain adequate security and collaborate with teams of varying technical expertise. Learning is essential to simply keep pace in security. In a CISO Series podcast, Skillsoft CISO Okey Obudulu recently said,…

4 min read

The Needs of a Modernized SOC for Hybrid Cloud

5 min read - Cybersecurity has made a lot of progress over the last ten years. Improved standards (e.g., MITRE), threat intelligence, processes and technology have significantly helped improve visibility, automate information gathering (SOAR) and many manual tasks. Additionally, new analytics (UEBA/SIEM) and endpoint (EDR) technologies can detect and often stop entire classes of threats. Now we are seeing the emergence of technologies such as attack surface management (ASM), which are starting to help organisations get more proactive and focus their efforts for maximum…

5 min read

How the Talent Shortage Impacts Cybersecurity Leadership

4 min read - The lack of a skilled cybersecurity workforce stalls the effectiveness of any organization’s security program. Yes, automated tools and technologies like artificial intelligence (AI) and machine learning (ML) offer a layer of support, and bringing in a managed security service provider (MSSP) provides expertise that isn’t available in-house. But it isn’t enough, especially for the medium-sized businesses that would most benefit from an internal security team. However, the talent shortage doesn’t just impact present-day security concerns. The lack of a…

4 min read