Modernization of education as a first step

[tanjimajuha20]

aggravated by the fact that the tasks need to be solved urgently: "The direction of secure development is gaining momentum, DevSecOps/AppSec specialists are becoming increasingly in demand. There is also an increased demand for analysts - SOC experts, specialists in security analysis and penetration testing (Pentest, RedTeam), cyber threat analysts and cyber intelligence (Threat intelligence (TI), Threat hunting (TH). The acute shortage of qualified specialists in the field of information security is also based on the financial issue: the costs of hiring and training personnel are high, this increases the value of trained personnel and complicates their retention, overheats the market and makes the formation of a staff of cyber specialists inaccessible for some companies. In addition, the level and urgency of tasks to ensure information security are high, and often there is simply no time to grow newcomers to the required positions."

Artem Komshov, Head of the japan whatsapp number database Expert Recruitment Group at Positive Technologies, sees a deficit in many areas, but the problem cannot be solved quickly: "There is a deficit in information security today in many areas: secure development, security and malware research, testing for cyber resistance against external intruders (pentests), cybercrime investigation, Threat Intelligence, etc. It is not possible to quickly fill the personnel deficit: information security specialists are needed in every company and organization, and universities cannot quickly update training programs and graduate the required number of talented young people. In addition, there is quite tough competition for candidates in the information security market. Updating the deferment program for IT specialists who do not have a higher education but are highly specialized experts in their field, increasing production and developing technologies can help change the situation."


"One way to solve the problem is to modernize the curricula of universities. Thus, in September 2023, the Ministry of Digital Development of the Russian Federation announced a complete revision of the standards for training specialists in the field of information security. The orientation of higher education towards business will allow training young specialists taking into account current technologies and cyber threats. This will help at least partially compensate for the personnel shortage in the information security market," Olga Karpova believes. "But at the same time, information security is a segment in which even an intern, not to mention higher positions, requires a fairly large amount of knowledge and experience. Rapid retraining of "just IT specialists" and "non-IT specialists" with the help of monthly courses on information security can prepare a contingent for entry-level positions, and the real need of businesses for more trained specialists has sharply increased."

Dmitry Kuzevanov sees the problem in the quality of basic education: "Since technology in general and information security are developing rapidly, educational programs simply cannot keep up with them. To solve this problem, more active interaction between educational institutions and the real sector of the economy is necessary. It is a pity that not everyone understands this. And of course, we should not underestimate the role of the state, which should create conditions for such interaction and stimulate it. We need synergy between the state, the educational system and the real sector. The real sector should contribute to improving the level of education through requests for specialists in the relevant specialties and with the necessary knowledge."

According to Maxim Akimov, there is a serious risk of dete