Recruiters: Opportunities are There for Security ProsAs Regulations, Security Increase, so Does Demand for Key Leaders Everyone feels the economic impact one way or another -- with jobs being cut or on hold, and companies hiring less. However, there remain pockets of opportunities for specialized security professionals, according to major recruiting firms, which report brisk business.
The hot jobs: Executive leadership and critical strategic hires within information security and audit compliance - areas largely untouched by recession. These are positions for which demand will always be there by leading domestic or global organizations, as regulators will not ease requirements due to economic conditions. "If anything, more regulations are likely to be on top of the new administration's agenda," says Jeff Snyder, President, J.A. Snyder & Associates, Inc. & SecurityRecruiter.com, a Woodland Park, CO-based IT information security recruitment firm.
"Our business thrives on hunting for very specialized talent and hard-to-come-by skills, and demand for these professionals cannot be ignored," remarks Lee Kushner, President, L.J. Kushner and Associates, LLC, an executive search firm dedicated exclusively to the Information Security industry and its professionals. "We are coming off with our best business sales in the fourth quarter of 2008, since, 2000 and the dot com boom. All attributed to our search capability and demand for special security talent, for which the market is very strong today".
Further, the security job market demand has clearly shifted from traditional security officer and just operational security role to a more converged role of security and risk management. "Today, it is not information security, but rather an integrated risk arena, where information security executives are information risk leaders, connecting and leveraging numerous aspects of technology risk and protection," says Tracy Lenzner, CEO, LenznerGroup, an executive search and consulting services firm based in New York, specializing placement services in IT risk, Information Security, Privacy, Compliance and Data Integrity. "Risk Management will be a key driver in the US and globally, as organizations respond to increased governance, regulations, compliance and transparency requirements".
The Banking Outlook
Within the banking industry, as specialized security recruiters point out, skill sets that security professionals will need to fill open positions include core subject matter expertise in:
Senior executive level positions within security, i.e. Chief Information Security Officer (CISO), Chief Information Officer (CIO) and Risk Management positions within bank holding companies and other organizations, are also on the rise. "Organizations are truly serious about their hiring needs and are now getting more strategic and skill set driven, requiring specialized talent within core security and IT governance areas. These companies cannot wait for the right person to step into their doorstep," adds Kushner.
Security recruiters also indicate that fear of data loss, cost of security breaches and requirement for regulatory compliance are other factors, pushing companies from industries such as retail, health care, energy, pharmaceutical and especially government to seek expert security and compliance professionals in this market to implement best practices. "Also, they want to take advantage of the availability of high end, strategic security leaders from the financial sector who may be looking for jobs in this tightened market," says Lenzner.
"Banking is an environment that traditionally has a large commitment to Information Security, and many things learned in financial services can be transferred easily to different industries," says Kushner. Lezner agrees and mentions that Industries such as healthcare, biotech, pharmaceuticals, energy, oil and gas, chemicals and government are great sectors to transition. "As they are also highly regulated environments, where experience and skills would transfer well and be relevant for banking security candidates. Additional education and advanced certifications like the CISSP, CISM and CISA are also a plus," Lenzner says.
Snyder adds that "the regulatory compliance and risk management skills these security professionals learn in banking will give them a leg up on their peers in other industries, if handled correctly."
Employers are looking for more security professionals who match their risk tolerance level and fit in with their risk culture, says Snyder. While jobs are being cut and new requisitions frozen, hiring is still being done for these critical positions. In some cases, Snyder says, "Consulting requirements are increasing as contractors are being hired on a project-to project basis to address regulatory compliance issues that must be addressed."