Network security talent market demand research

Enterprise 2023-07-11 20:04:10 views: null

statement

This article is to study the 2022 network security talent market research report. The study notes are organized by downloading the address, and shared to hope that more people will benefit. If there is any infringement, please contact us in time

Network security talent market demand research

In order to better understand the demand for capabilities in the network security talent market, we conducted a special survey and analysis of more than ten experts from different directions in the network security talent job market through survey questionnaires. This chapter will combine the research results to specifically discuss the demand for network security talents in government and enterprise organizations related to network security.

The positions involved in the survey are divided into four parts:

Daily operation direction: vulnerability scanning and verification, security operation and maintenance, threat analysis, terminal security...

Security attack and defense direction: discovery of unknown threats, penetration testing, emergency response, code auditing...

Safety management direction: safety compliance, safety assessment, safety planning, risk management...

R&D testing direction: security development, code security, component testing, business testing...

Pyramid of Network Security Talents

According to the big data statistical results of Zhaopin’s recruitment of network security talents in the previous article, it can be seen that major government and enterprise organizations in the network security industry have increasingly precise demand for talents in security positions, and the required capabilities are also becoming more precise. This enables enterprises to better recruit more suitable talents according to the needs of the industry and enterprise characteristics, and schools to better combine the needs of the job market and the ability level of students to set up appropriate training plans for cyber security talents, and cyber security talents can be better based on Find a position that is more suitable for you while solidifying your own abilities based on your own interests, advantages and market demand.

Many new network security talents only master the existing learning courses in the university, and cannot fully meet the job requirements. They need to accumulate more professional skills through self-study, practice, current affairs, and internships. will have greater advantages. First of all, we need to understand what capabilities cybersecurity talents generally need.

According to the capabilities needed by cyber security talents, this report sorts out the "Cyber ​​Security Talent Capability Pyramid", in which capabilities can be divided into four levels from bottom to top: basic knowledge, professional skills, engineering practice and comprehensive capabilities.

In the capability pyramid, the first and bottom layer is basic knowledge. As general basic computer knowledge, it refers to the level of basic knowledge application that talents in corresponding positions should have to complete work tasks, mainly including basic computer knowledge and corresponding basic theories. Most network security-related positions require basic knowledge as the basis, and it is difficult to further master the second-level professional skills without the accumulation of basic knowledge in general computer direction.

The second layer is professional skills, which refer to the general knowledge that talents in corresponding positions should master, including: the use of security tools, the use of vulnerability principles, reverse analysis techniques, etc. Network security professional skills need to be based on basic computer knowledge, and basic computer knowledge is further refined to improve professional skills.

The third layer is engineering practice, which refers to the experience that talents in corresponding positions should have in actual engineering and project promotion. If you want to enter the direction of security attack and defense and general security management, you also need to master the third layer of engineering practice capabilities, such as: security device configuration, intranet penetration capabilities, actual combat attack and defense capabilities, etc. Mastering the basic three-level ability of the network security talent pyramid, you can be competent for most general network security-related daily operation and maintenance, research and development testing, and some positions in the direction of security attack and defense.

The fourth layer, which is the top layer, is the comprehensive ability, which refers to the behavioral characteristics and comprehensive qualities that talents in the corresponding positions should possess in order to meet the completion of work tasks. Positions that want to try security management (such as: security compliance, security assessment, security planning, risk management, etc.) or senior management positions in other directions require higher comprehensive capabilities, such as: security management capabilities, understanding of policies and regulations, and intelligence collection ability, self-learning ability, etc. However, although these positions require such abilities, these abilities do not necessarily have to be learned in school. They can also be cultivated through self-study or after entering the enterprise.

The details of the network security talent pyramid are shown in the figure below:

github5.com focuses on sharing high-quality documents for free

Based on the comprehensive analysis of post popularity, learning method recommendation, talent skills mastery, and college skill popularization rate, this report gives qualitative reference suggestions for the cultivation of network security talents in colleges and universities.

Basic Knowledge Needs of Enterprises for Network Security Talents

From the perspective of basic knowledge, as the basis of ability, more than half of the positions require network security talents to master these abilities during school or through self-study. For example: 77.0% of the positions require network security talents to master the ability to write and develop programming languages, of which 69.3% of the positions require network security talents to master during school or through self-study; Master the programming language, but you can also train and learn after going to the enterprise.

Direction: Fundamentals
Ability/Mastery job skills In-school study recommendation self-study recommendation Corporate Internship Recommendation
Programming language 77.0% 53.9% 30.8% 7.7%
How the application works under the hood 61.6% 23.1% 30.8% 15.4%
database 69.3% 23.1% 30.8% 7.7%
data structure 61.6% 23.1% 15.4% 15.4%
algorithm 46.2% 15.4% 23.0% 15.4%
mainstream development framework 46.1% 7.7% 7.7% 0.0%
Software and hardware system development 15.4% 7.7% 23.1% 7.7%
data analysis 53.9% 23.1% 23.1% 15.4%
TCP/IP protocol 69.3% 30.8% 46.1% 15.4%
Code reading logic analysis 84.6% 23.1% 30.8% 7.7%

Enterprises' professional skills demand for network security talents

From the perspective of professional skills mastering needs, all positions in the network security industry require corresponding security capabilities, but different positions will have different emphasis on the mastery of capabilities. For example, according to the generality of job skills, it can be found that network security talents need to master the basic knowledge of web security, the use of security tools and other professional skills. On the whole, the mastery requirements for various abilities in the direction of professional skills are shown in the table below:

Orientation: professional skills
Ability/Mastery job skills In-school study recommendation self-study recommendation Corporate Internship Recommendation
network penetration 38.5% 23.1% 15.4% 0.0%
penetration testing 46.2% 30.8% 7.7% 7.7%
Vulnerability principle 46.2% 30.8% 7.7% 7.7%
reverse analysis 53.9% 0.0% 23.1% 30.8%
web security 92.3% 38.5% 23.1% 30.7%
middleware security 53.9% 30.8% 7.7% 15.4%
operating system security 53.9% 23.1% 15.4% 15.4%
database security 38.5% 15.4% 0.0% 23.1%
Viruses and Trojans 38.5% 7.7% 7.7% 23.1%
security tool 61.6% 15.4% 15.4% 30.8%
Cryptography 46.2% 7.7% 15.4% 23.1%

Enterprises' demand for engineering practice of network security talents

From the perspective of the enterprise's engineering practice direction for network security talents, the job skills of traceability analysis and vulnerability handling capabilities are more universal. At the same time, we found that most positions do not require the ability of network security talents to pass courses during school, and generally accept self-study or training in enterprises. The specific distribution is shown in the table below:

Direction: Engineering Practice
Ability/Mastery job skills In-school study recommendation self-study recommendation Corporate Internship Recommendation
security strategy 46.2% 0.0% 7.7% 38.5%
Vulnerability Analysis 46.2% 7.7% 15.4% 23.1%
intrusion detection 46.2% 15.4% 7.7% 23.1%
data mining 38.5% 7.7% 15.4% 15.4%
Traceability analysis 61.6% 0.0% 30.8% 30.8%
Device Configuration 15.4% 7.7% 0.0% 7.7%
Vulnerability handling 61.5% 15.4% 15.4% 30.7%
Actual offense and defense 38.5% 23.1% 7.7% 7.7%

Enterprises' demand for comprehensive capabilities of network security talents

From the perspective of enterprises' comprehensive ability requirements for network security talents, most of the abilities are not required and it is difficult to require that network security talents must be mastered through coursework during school, some abilities can be mastered through self-study, and most abilities can be cultivated after entering the enterprise. It can be seen that the comprehensive ability requirements of network security talents are more in need of self-learning ability of network security talents and school-enterprise cooperation and practical training. The specific distribution is shown in the table below:

Direction: Comprehensive Ability
Ability/Mastery job skills In-school study recommendation self-study recommendation Corporate Internship Recommendation
intelligence gathering 23.1% 15.4% 7.7% 0.0%
Familiar with regulations, policies and standards 76.9% 0.0% 30.8% 46.1%
safety management 53.8% 0.0% 30.7% 23.1%
Solve technical problems independently 92.3% 23.1% 38.4% 30.8%
Understand industry development trends and cutting-edge technologies 92.3% 7.7% 15.4% 69.2%

further reading

For more information, please click to download the 2022 Network Security Talent Market Research Report. Further study

Links

GB/T 40060-2021 Technical requirements for liquid hydrogen storage and transportation

Guess you like

Origin blog.csdn.net/maoguan121/article/details/128507937
Recommended
LFOSSA Yuanlaisusu Open Course | Mastering the Cloud Native Future: Comprehensive Guide to CNCF Certification and Exam Preparation Tips
Ranking
C++ Basic Syntax
bootstrapTable hides a column based on a condition
Why is reentrant lock recommended instead of Synchronized when dynamic high concurrency?
hexo create a blog
[Fully open source and non-encrypted version] Imitation of the eighth district distribution/online signature/multiple sets of download templates/APP distribution hosting/APP packaging and packaging
Polymerization combination
https://www.flysnow.org/2017/05/06/go-in-action-go-log.html
From the perspective of Flutter and the front-end, talk about how to ensure UI fluency under the single-threaded model
nginx-301, 302 redirect
Geolocation by IP Address in ASP.NET
Daily
More
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)
2024-04-23(30)
2024-04-22(5)
2024-04-21(0)
2024-04-20(6)
2024-04-19(5)
2024-04-18(0)
2024-04-17(31)

Code World

© 2018 codetd.com