UK businesses are facing risks to their IT security due to a lack of requisite skills, as 77% of UK CIOs (Chief Information Officers) believe they will face more security threats in the next five years due to a shortage of IT security talent, according to report Cybersecurity – protecting your future by Robert Half Technology.

UK CIOs believe the top three IT security risks facing organisations in the next five years are data abuse/data integrity (60%), cybercrime (54%) and spying/spyware/ransomware (39%). In response to increased threats, 34% of UK CIOs are planning to increase headcount. The positions that are most in demand are IT security analyst (junior level), information security officer (mid-level) and security operations officer (mid-level). The appeal of having experts on hand when needed is expected to grow, with 27% of UK CIOs saying they will increase the number of contract IT security professionals in the next 12 months.

According to PwC, the average number of global security incidents increased by over a third (38%) in 2015, resulting in a 56% increase in the theft of hard intellectual property over 2014. Across the UK, two thirds of large businesses have been hit by a cyber breach or attack in the past year.

“There is no doubt that highly specialised skills are vital. But the ability to clearly articulate cybersecurity issues in a language that senior management and non-IT employees understand will not only increase security awareness, but also enhance the reputation of the IT department as business partners who add value across the business,” Neil Owen, director at Robert Half Technology, said.

“The prominence of cyber breaches has lifted the demand for cybersecurity experts as cyber risk becomes a company-wide point of discussion. An insufficient number of new specialists entering the IT market has forced organisations to consider effective retention programmes, training existing staff, partnering with educational institutions and developing flexible hiring policies that include both permanent and contract specialists. A dynamic IT strategy that brings together the right fit of technology and people is the cornerstone for companies protecting their future,” Owen said.

 Robert Half states that companies are gradually appreciating the importance of hiring a chief information security officer (CISO) who is not only the key player in efficiently managing the IT security process but also in enhancing internal security awareness across the organisation. Today’s CISO is a senior professional with extensive experience in cybersecurity, governance, risk management and compliance, who is able to effectively manage a team and clearly articulate IT security issues and their implications – as well as insights and solutions – to senior stakeholders.

The escalating fear of data theft, hacking and fraud, compounded with many staff working remotely and with multiple devices means an increased demand for IT security specialists. Cybersecurity experts with the specialist skills needed to help companies recognise and protect themselves against key data security risks are in high demand but, at the same time, challenging to find.

Top five technical skills in IT Security*

Source: Robert Half 2016

*Responses do not total 100% due to rounding

Along with the technical skills and expertise that are necessary for a specific position, the so called soft skills have also become substantially more important. The ability to analyse data and provide insights, as well as have strong business acumen and communication skills, have developed into essential core skills for an IT security role.