Study: Companies not staffed to deal with cybersecurity flaws

Dive Brief:

A 2015 Spiceworks study shows that although 80% of companies experienced cyber-security breaches, only 29% had a cyber expert on their IT staff, and only 7% had an executive-level cyber chief. Slightly more than half, or 55%, of the companies polled neither had access to a cyber expert nor outsourced the job to a third-party firm, the Texas-based IT firm reported. And the majority don’t plan to hire any.
IBM sets the average data-breach cost at $4 million, with stolen files costing $154 each. The study shows that cyber-theft intervention saves employers money overtime. It also shows that although 73% of chief information officers and IT executives think cybersecurity is a priority, only 54% of company heads and 20% of marketing chiefs feel the same way.
Cybersecurity is a relatively new area of study, which might account for the shortage in cyber experts. US News and World Report forecasts the profession growing at a 36.5% rate. US News ranked IT security professions number 34 on its list of 100 best jobs. Annual salaries range from $92,210 to $142,200.

Dive Insight:

With cybersecurity threats like ransomware creating havoc for HR teams worldwide, there's no question that employers without cyber protection should consider hiring or contracting with an IT security specialist to address and minimize threats.

The shortage in cybersecurity professionals presents recruiting and hiring challenges for HR. A lack of needed talent can adversely impact key areas like employee benefits. Scoping out internal IT staff to train is one way to address the problem.