Addressing the Cybersecurity Skills Shortage

Addressing the Cybersecurity Skills Shortage

Even more difficult than getting approval for an added headcount to address your cybersecurity concerns is finding the right person to fill that hard-fought opening. There are two factors at work in this HR challenge. The first is the competition to find a cybersecurity worker and the second is to ascertain whether the worker has the right skillset and technical knowledge to meet the needs of the position.

314,0001 and 1.8 Million2 – the number of cybersecurity job openings in the US market in 2019 and the number of global cybersecurity workforce shortage projected by the year 2022, respectively. These numbers are great if you are a college student majoring in cybersecurity, but they are worrisome if you are an organization trying to protect critical assets and confidential properties (both physical and intellectual). When you put these two contrasting need and workforce trends together, the resulting gap has proven to create material deterioration in a company’s security readiness.

In the oft referenced study of the international shortage in cybersecurity skills conducted by Center for Strategic and International Studies3, the solution to the skills shortage for most of the respondents was to rely on cybersecurity technology and outsourcing to experts. But even a cursory search of the available cybersecurity products and solutions reveal a bewildering number of offerings.

It is easy to get drawn to the latest and greatest shiny technology but most commercial customers want a solution that will meet their security requirements, with an affordable price, that is quick to deploy and easy to maintain – in other words, they are interested in the “Total Cost of Ownership.” Many cybersecurity solutions require specialized knowledge, training, or expert resources that already have those skillsets, which can raise the cost significantly by requiring dedicated personnel or outsourced assistance. So then you’re back to first base and smack dab into the workforce shortage that drove you to third party solutions to begin with.

Data diodes offer a category of devices that can help mitigate issues created by the cybersecurity skills shortage. They are hardware-based solutions that are unhackable in their inherent design (physically enforced, rather than enforced by software configuration or policy), which obviously makes them highly secure. As an added benefit, they do not require dedicated resources to constantly maintain and keep up to date with rule revisions and patches.

This has proven particularly helpful to industrial and CI organizations which are primarily dedicated to uptime and safety, rather than cybersecurity. Once the data diode is set up (usually within minutes) the system simply works and is usually left alone until the next patching window (for feature upgrades and optimization). Owl Cyber Defense solutions have been protecting hundreds of government and CI customers and facilities for many years, and now other markets such as financial services, pharmaceuticals, transportation, and more are beginning to realize the security and cost benefits of Owl data diodes.

In a world of increasing number of unsecured connections and continuous streaming of proprietary data to the cloud, data diodes can protect your network and alleviate risks while requiring only a fraction of the cybersecurity and IT resources in comparison to commonly utilized solutions like firewalls and expensive threat analysis tools.

If those factors sound attractive and would fulfill your needs, I encourage you to reach out to Owl Cyber Defense and see our range of data diodes products and solutions that would best fit your requirements.


  1. CyberSeek Cybersecurity Supply/Demand Heat Map,
  2. The U.S. Secretary of Commerce and the U.S. Secretary of Homeland Security, A Report to the President on Supporting the Growth and Sustainment of the Nation’s Cybersecurity Workforce,
  3. CSIS, Hacking the Skills Shortage,
Dan Crum Marketing Manager

Introducing SELint – An SELinux Policy Analysis Tool

As part of our ongoing leadership in the SELinux community, Tresys – now Owl Cyber Defense, as the companies have recently merged – has developed SELint, a free tool designed to perfo...
January 28, 2020
Charlie Schick Healthcare Consultant

Windows 7 End of Life Puts Hospitals in a Pickle

Microsoft is ending all support for Windows 7 on January 14th, 2020 - less than 3 months away (as of this writing)! After that time, there will no longer be any updates (including securit...
December 4, 2019
Charlie Schick Pharma and Healthcare Consultant

Total Geekery: Data Diode Bioreactor Demo

This post will be on the light side, describing a demo I had fun making and about which my co-workers are tired of hearing me speak. Nonetheless, despite the geekiness of the demo, it was...
November 21, 2019