Case Study #3: Is there a cybersecurity workforce crisis in state
A membership organization for state government
officials has asked your cybersecurity consulting firm to partner with it in
developing a one-day workshop on workforce development needs for cybersecurity
workers. Your part in this endeavor is to provide the coordinating committee
with a position paper which discusses the question: “Is there a cybersecurity
workforce crisis in state governments? Your paper should be no more than 3
pages in length and must address both sides of the question (“yes, there is a
crisis” and “no, there is not a crisis”).
Read / Review the Week 5 readings.
Research authoritative sources which support the
“Yes” side of the question. Here are several sources to help you get started:
Comparing Private Sector and Government Worker
Salaries http://reason.org/news/show/public-sector-private-sector-salary (This source argues both sides of the
compensation / education arguments.)
Research authoritative sources which support the
“No” side of the question. For example, states may have a shortage of workers overall.
Or, the lack of competitive compensation claim may be inaccurate. Or, you may
find that the shortage of cybersecurity workers is unrelated to the type of
employer (that is, everyone is having problems finding qualified personnel).
Budgetary Constraints (p. 3, Figure 1.4) http://www.csg.org/knowledgecenter/docs/ta0210workshortage.pdf
IT Workforce hiring issues: http://www.nascio.org/publications/documents/NASCIO_ITWorkforce_UnderPressure.pdf
State vs Private Compensation (see “Conclusions”
on p. 15) https://www.aei.org/wp-content/uploads/2014/04/-biggs-overpaid-or-underpaid-a-statebystate-ranking-of-public-employee-compensation_112536583046.pdf
Global talent gap http://thehill.com/blogs/congress-blog/technology/239113-cybersecurity-talent-worse-than-a-skills-shortage-its-a
Review the best practice recommendations from
the NICE report. Select three to five best practices which state governments
could benefit from implementing. http://niccs.us-cert.gov/sites/default/files/documents/files/Best%20Practices%20for%20Planning%20a%20Cybersecurity%20Workforce_062813_v4.2_FINAL_NICE%20branded_0.pdf
Review alternative recommendations for
attracting and retaining qualified talent (workers) to a state or region.
Select 3 or more which you believe would be beneficial for state government
hiring efforts for cybersecurity personnel.
a. About Good Neighbor Next Door (ask
yourself if this program or something similar should be extended to
cybersecurity personnel) http://portal.hud.gov/hudportal/HUD?src=/program_offices/housing/sfh/reo/goodn/gnndabot
b. Attracting Big Talent to Small Cities http://www.hreonline.com/HRE/view/story.jhtml?id=534358095
c. 7 Ways to Attract and Retain Talent
(without having to compete on salaries)
d. Government Needs to Rethink How They Attract
IT Talent http://www.governing.com/columns/tech-talk/gov-remaking-your-workforce.html
Write a two to three page
summary of your research. At a minimum, your summary must include the
introduction or overview of the cybersecurity workforce issues which impact
State governments. This overview should address the political, economic,
socio-cultural (included education), and technological factors which contribute
to the perceived lack of qualified cybersecurity workers. This introduction
should be suitable for an executive audience.
separate section which addresses three to five specific reasons why states have
difficulty hiring a sufficient number of trained and qualified cybersecurity
workers for positions in state agencies and offices.
A separate section which addresses three to five
specific “non-cybersecurity” reasons why a workforce
shortage affecting state governments may currently exist. You may also choose
to argue that the workforce shortage arises out of state budget problems rather
than training and education or salary.
recommendations section which addresses three to five marketing or hiring
actions which state governments could take to attract cybersecurity talent and reduce
or alleviate a cybersecurity workforce shortage for trained and qualified
cybersecurity personnel. These recommendations should include several
alternative practices which deemphasize salary.
Your white paper should use
standard terms and definitions for cybersecurity and privacy. The following
sources are recommended:
NICCS Glossary http://niccs.us-cert.gov/glossary
on Security and Privacy in Public Cloud Computing http://csrc.nist.gov/publications/nistpubs/800-144/SP800-144.pdf
standard APA formatting for the MS Word document that you submit to your
assignment folder. Formatting requirements and examples are found under Course Resources
> APA Resources.
are expected to write grammatically correct English in every assignment that
you submit for grading. Do not turn in any work without (a) using spell check,
(b) using grammar check, (c) verifying that your punctuation is correct and (d)
reviewing your work for correct word usage and correctly structured sentences
and paragraphs. These items are graded under Professionalism and constitute 20%
of the assignment grade.
are expected to credit your sources using in-text citations and reference list
entries. Both your citations and your reference list entries must comply with
APA 6th edition Style requirements. Failure to credit your sources will result
in penalties as provided for under the university’s Academic Integrity policy.