Much has been written about the skills gap in terms of the lack of qualified security practitioners to fill the roles available within organizations. In fact, the skills gap is currently one of the top concerns for CISOs, and the situation is poised to get event worse.

Look to the Millennials

A recent Frost & Sullivan report looked at the importance of the millennial generation in filling the skills gap, which it estimated will amount to 1.8 million information security workers by 2020. Millennials will be critical for closing this gap, since they will form an even larger cohort than the baby boomer generation.

Information security education has progressed, but it is still a work in progress. It is unlikely that any organization will be able to fill its needs with university graduates alone, especially given the competition for candidates. This makes it a necessity that organizations ramp up their training programs, taking into account not just the technical skills that are required for information security positions, but also the soft skills that link technology with business needs.

Train From Within the Ranks

The research by Frost & Sullivan found that the millennial generation is particularly open to on-the-job training. In fact, 65 percent of this demographic stated that it is very important to them — a higher clip than previous generations. Millennials place a particular emphasis on mentorship and leadership programs, which is one reason why they are likely to change jobs voluntarily: The research found that better perks are a greater motivation than low job satisfaction when considering a career move.

Embrace Diversity

Millennials are also more likely than previous generations to value diversity, with 46 percent saying that diversity is very important to them. A full two-thirds of millennials claimed to speak more than one language, compared to just over one-third of baby boomers. The value placed on diversity may also help organizations tap the pool of female workers who may not have been motivated to study technology previously.

Another recent study found that women comprise just 10 percent of the information security workforce. If women are not drawn to information security as an education option, on-the-job training may help organizations to train current female workers and increase diversity within their ranks. That move is likely to appeal to millennials.

A New Approach to Close the Skills Gap

Tackling the skills gap requires a new way of thinking for organizations. Rather than leaving everything to recruiters, they should look at current employees and seek to leverage what they already have. For the millennial generation, job satisfaction is vital. Ensuring that they can stay current through training and education will not only increase morale, but also help organizations to overcome the cybersecurity skills gap.

Read the IBM Executive Report: Addressing the Skills Gap with a New Collar Approach

more from CISO