2019 Ponemon Study on Automation and Cybersecurity Staffing in Asia Pacific, United States and the UK shows an evolving Asia Pacific cybersecurity arena

By : Candra Mata | Tuesday, April 16 2019 - 11:16 IWST

Ponemon Institute
Ponemon Institute

INDUSTRY.co.id - Singapore, April 16, 2019 - DomainTools, a leader in domain name and DNS-based cyber threat intelligence, today announced the results of the study “Staffing the IT Security Function in the Age of Automation”, conducted in conjunction with the Ponemon Institute. 

More than 1,400 security professionals based across the Asia Pacific (APAC), US, and the UK provided answers on the impact that automation and artificial intelligence (AI) will have on the staffing of cybersecurity functions. All respondents in the study are responsible in attracting, hiring, promoting and retaining cybersecurity personnel within their organizations.

Universal Shortage of Cybersecurity Staff and Need for Automation

Results clearly indicated a shortage of cybersecurity staff across geographical regions (78% of all respondents admitted their teams are understaffed).

According to respondents, automation will provide a partial solution to the problem, relieving cybersecurity professionals of time-consuming and non-cost-effective tasks, such as malware analysis, which is either already automated (50%), or is planned to become so in the next three years (56%).

Only 35% of respondents, however, think that automation will reduce the headcount of their cybersecurity function: 40% even expect an increased need for hires with more advanced technical skills.

“Within just one year, the perspective around adoption of automated technologies has notably shifted among cybersecurity professionals,” said Dr. Larry Ponemon, chairman and founder of the Ponemon Institute. 

“Contrary to the popular belief that the rise of automation will threaten the job market, organizations now feel these technologies will help ease the current strain on resources, and offer the potential to promote job security for highly skilled staff, while strengthening cybersecurity defenses.”

UK and US respondents were much more confident that automation will improve their cybersecurity staff’s ability to do their job (59% and 65% of respondents, respectively) than APAC respondents (48%), who were also more likely to distrust AI as a cybersecurity tool (37% of respondents, compared to 31% in the UK and 24% in the US).

Asia Pacific Ahead in Cybersecurity Skills Availability 

Skills shortages also seemed to be lower in the APAC region (67%) compared to the UK (70%) and the US (78%), perhaps partially explaining the different level of reliance and trust on automation and AI across regions.

At the same time, the survey reported that 40% of respondents expect an increased need for hires with more advanced technical skills, aligning especially in Asia Pacific where governments and educational institutions are already accelerating specialized cybersecurity programs and initiatives, such as the ASEAN-Singapore Cybersecurity Centre of Excellence announced during the Asean Ministerial Conference on Cybersecurity (AMCC) in September 2018, where ASEAN nations are adopting a rules-based approach to regional cybersecurity frameworks. 

ASEAN, or the Association of Southeast Asian Nations, is a ten-nation group comprised of Brunei, Cambodia, Indonesia, Laos, Malaysia, Myanmar, the Philippines, Singapore, Thailand, and Vietnam.

Of those respondents who said AI is trusted as a security tool in their organizations, the majority listed staff shortages as the main reason why their enterprise has adopted the solution (53%).

“The results of the survey reveal that, overall, cybersecurity professionals are confident that automation will make their workload more manageable and will increase the accuracy of certain tasks, without jeopardizing their job security”, says Corin Imai, senior security advisor at DomainTools. 

“Although there are geographical differences in the level of confidence placed in AI and automation as cybersecurity tools, the reasons that motivate their adoption – relieving overworked teams, preventing downtime and business disruptions, reducing threats created by operating in the global digital economy, etc. – seem to be consistent across regions, suggesting that goals and expectations are aligned for organizations across the globe.”

News Comment

Today's Industry

Dr Paul Gardner-Stephen, Senior Lecturer, College of Science and Engineering, Flinders University (Photo by ICT Days)

Kamis, 24 September 2020 - 15:15 WIB

NBN Co to Spend $3bn Upgrading Half of FTTN Network to Full Fibre

In particular, the original Fibre-To-The-Premises (FTTP) plan had several key advantages that this announcement is not able to solve.

Rena Chua, Bug Bounty Advisor at HackerOne (Photo by Linkedin)

Kamis, 24 September 2020 - 14:15 WIB

How COVID-19 Is Impacting Security

With this accelerated pace of digital transformation, CISOs had to quickly facilitate new needs — while ensuring the security of existing systems and newly-acquired collaboration tools.

Ilustration Asia-Pacific’s First and Largest Collaborative Robots Virtual Expo (Photo by Universal Robots)

Selasa, 22 September 2020 - 17:00 WIB

Universal Robots Hosts First Virtual Collaborative Robots Exhibition & Conference in Asia-Pacific

Gain actionable insights on flexible and cost-effective automation solutions addressing post-pandemic ROI and safety challenges for small & medium businesses.

Published BSIMM11, The Latest Version of The BSIMM (Photo by EEJournal)

Senin, 21 September 2020 - 18:30 WIB

Synopsys Publishes BSIMM11 Study Highlighting Fundamental Shifts in Software Security

BSIMM11 reflects the software security practices observed across 130 firms from multiple industry verticals including financial services, FinTech, independent software vendors, cloud, health…

New Cloud-Based Technology That Delivers Secure Remote Access (Photo by News Break)

Senin, 21 September 2020 - 17:15 WIB

Check Point Software Technologies Redefines Secure Remote Access for Enterprises

This technology will integrate with Check Point´s Infinity architecture, and become the easiest and most secure solution for enterprises need to enable employees´ secure remote access to any…