According to Cybersecurity Ventures, there will be 3.5 million unfilled cyber security jobs by 2021. Meanwhile, the unemployment rate is zero percent. At Black Hat 2017, the cyber security talent shortage was not overlooked.

Here are highlights from CSO’s conference insights on the topic:

  1. Candidates rule. Experienced cyber pros are looking for pay packages that are 15 to 20 percent more than what most employers are offering.
  2. Ex-cyber military experts are in hot demand but are drawn to join firms led by other military men and women.
  3. Colleges and universities are not turning out enough cyber security graduates.
  4. Industry newcomers transitioning from IT positions lack real-world experience and subject matter expertise. This leads to turnover at organizations with high threat levels.
  5. Some corporations claim they won’t hire black hat hackers, but privately indicate an openness to “rehabilitated” cyber criminals.
  6. Hospitals and healthcare providers are struggling to attract top cyber security experts. However, lower pay than other industries—combined with aging systems–make it a sector that is less attractive.
  7.  Candidates seeking cyber jobs in financial services see more competition due to the industry’s advanced infrastructures and more generous compensation packages.
  8. Recruiters and others on the hiring side are becoming their own worst enemy by pressuring candidates with job offers that are retracted if not accepted within a short window of time. This ends up being a turnoff to prospective employees during a period of abundant opportunities.
  9. Online job boards are not the answer when it comes to recruiting. Instead, candidates favor confidential engagement with a headhunter.
  10. The most effective way to recruit experienced cyber security professionals is to network at hackathons and smaller industry events.

Read the full story here.