Skip to content
Naked Security Naked Security

Government focuses on young people to tackle cyberskills shortage

Scheme aims to have nearly 6,000 teenagers trained in cyberskills by 2021

The British government has pledged to deliver a “cyber curriculum”, aiming to address the much-talked-about skills shortage, which is causing pay hikes as well as security risks.

Called the Cyber Schools programme, it is aimed at people between 14 and 18 and is funded to the tune of £20m. For that, the scheme aims to have 5,700 teenagers trained by 2021.

Similar initiatives are happening internationally. Graham Hunter, VP Certifications, Europe and Middle East at industry body CompTIA, said his organisation had supported initiatives such as and offered professional certifications as a result.

He approved of the UK scheme in principle, saying:

The plan is ambitious, but with the pressure already placed on teachers to deliver a packed curriculum, the idea of getting cross-industry partners to come together in a number of consortia to bid on this will ensure it has fresh, engaging material to inspire a new wave of schoolchildren interested in cybersecurity roles.

He also pointed to the resources available, saying:

CompTIA as well as other sponsors has already contributed to a schools programme as supporters of the Cyber Security Challenge. Adoption is often down to the interest of the teachers and not the student, so by having an extracurricular offering, utlilising industry advocates and trainers with real-world experience is a good thing. Scalability will be a challenge, but technology can help.

The apparently low amount of funding might be a good thing, he added.

The government wants to kickstart a sustainable programme. Much like the coding clubs you see inspiring a generation of coders, cyberclubs can play a role in developing the right mindset, skills and awareness of roles available.

£20m is sufficient to get industry to come together and if there is one thing that cybersecurity specialists are good at, it is finding solutions to tricky problems, be it the latest botnet or in this case making scarce resources go far.

It has perhaps taken this injection of cash to corral the industry resources, organisations such as BT have already have schools outreach programmes, it would be to their credit if they and other organisations come together in a non-competitive way to solve the skills gap issue, only then will the funding be sufficient.


What irks me is how goverments/corporations lead econonies into brick walls and then pass the buck on the backs of children in the backseats — Forget the 30/40/50-somethings that were behind the wheel and are out of work, but have aptitude/mental agility (and face skills) to fill these ‘ranks’.

These governments/companies need to get a new record. This is systematic unemployment creationism and it’s a lousy beat.

They need to train the adults that want/need jobs NOW or get with the Universal Income Program. Training children and ignoring adults is unsustainable can-kicking.


Cert company says skills shortage can be solved by gaining certs.

Except most certs don’t give you skills to actually work in Cyber or information security. As usualy they fixate on the technical as if the only thing that matters is vulnerability testing. Most of security work is done through soft skills, Risk assessment, negotiation, business impact analysis. I’ve yet to see any certs that help with that. But certs will get you work, HR like tick boxes, but they won’t make you good at the job.


Many years ago I worked at dell as internal support, they required we get a CompTIA A+ cert to stay employed. It was laughable the things on the test, and most certainly would not qualify anyone to work in IT, even entry level. However, if you were going into sales it would make you familiar with terminology.


Aren’t the certifications being created now based on performance based questions? So you have to actually complete a task, using tools that you would do doing the role. Exams have come a long way since my time and to your point I see the new CompTIA CSA+ certification apparently looks at behavioral analytics (edited to remove link)


Leave a Reply

Your email address will not be published. Required fields are marked *

Subscribe to get the latest updates in your inbox.
Which categories are you interested in?
You’re now subscribed!