DOUGLAS S. ALEXANDER says the need for cybersecurity professionals across all industries in the state has more than doubled since 2020, with more than half of the available cyber jobs being vacant. But Alexander, the inaugural director of Rhode Island College’s Institute for Cybersecurity & Emerging Technologies, thinks the Ocean State is still positioned to become an “important part of New England’s cyber workforce ecosystem,” with the institute helping feed the talent pipeline.
Cyberthreats are constantly evolving, with more and more bad actors looking to steal information. Does that make the need for cybersecurity professionals in all industries that much more vital? If so, why? Absolutely, and not just in all industries but across all organizational departments. Cybersecurity isn’t just a technology problem; it’s an organization problem, which is why our degree programs all sit within RIC’s School of Business. Students need to enter the workforce understanding not just the technical aspects of cyberattacks, but also the issues of policy, governance, communications, finance and so on. What we are seeing is the evolution of the cybersecurity industry out of the information technology space and into a place where every employee is, in essence, responsible for their company’s security.
What are the greatest challenges local companies must deal with regarding cybersecurity and how is the institute responding to those challenges? The greatest challenges are resource management and employee training. Budgets and staffs are already stretched thin, and they’re now being asked to accommodate the large number of tools and procedures that good cybersecurity requires. These demands for hardware, software, policies, plans and trainings just didn’t exist a couple of decades ago. Employee training is arguably the most important, but it can be especially hard because culture and habits are tricky things to shift, and training takes time. The institute is currently building a cyber range, which will allow us to not only train our students in real-world cyber scenarios but businesses and local governments.
How much has the need locally for cybersecurity professionals grown within the last 12 months? Which sectors need such professionals the most? According to published data, the need for cybersecurity professionals is rising steadily each year in Rhode Island, more than doubling since 2020. Most importantly, more than half of all cyber jobs in our state are vacant – there is a huge need for these skills. Industries such as professional services lead the way, but other sectors such as finance and insurance, administrative services, manufacturing and retail all show high demand for information security analysts or other specialized cybersecurity positions. In speaking with local law enforcement, we’ve also become aware of the need for protecting the critical infrastructure sectors, [including] power, water, education and financial services.
Is the institute directly partnering with local companies to form a pipeline for cybersecurity and information technology professionals? If so, who are they? The institute’s primary mission is workforce development in cybersecurity and emerging technologies such as artificial intelligence. Our computer science students participate in internships with local businesses, and they’ve also been collaborating with Polaris MEP to perform security assessments for local defense manufacturers. We want nothing more than to place our students in internships that turn into full-time employment, and we’re working on plans to create additional, statewide internships and even apprenticeships for students.
Does the institute offer any training programs to help individuals who have worked in another industry but now want to work in cybersecurity and technology? If so, what are they? Yes! RIC’s cybersecurity courses aren’t just for full-time undergraduate students; they are for the entire workforce, no matter what career stage they’re in. We’re creating a cybersecurity certificate program for midcareer students, giving them that skills boost in exchange for about six months of classes. The cybersecurity field encompasses many different jobs … from security analyst to network infrastructure specialist to compliance auditor. A true cybersecurity professional possesses not only technical skills but is also excellent at communication and creative in their problem-solving.
Will the institute offer opportunities to retrain cybersecurity professionals to get them up to speed on understanding and addressing new cyberthreats? This is, in fact, part of the institute’s primary mission – to help existing professionals stay current in an environment that is constantly evolving. Early next year, we’ll be unveiling our new Cyber Range, part of which is a cloud-based cybersecurity education tool that offers labs on everything from computer and networking fundamentals all the way to using advanced commercial security software to fight cyberattacks. We’ll use this range to offer training, certifications and simulated cyberattack experiences not just to our students but to the Rhode Island cybersecurity community. It will be an invaluable tool in keeping our state secure.
What kind of cyber-related job opportunities are you preparing students for? Do you see the state becoming a regional leader in this training and education? A cybersecurity career can look very different depending upon the position and industry sector. The institute is in RIC’s School of Business, preparing students for careers in the private, nonprofit, government, or defense sectors. We see Rhode Island becoming an important part of New England’s cyber workforce ecosystem, graduating students who are ready for varying cyber careers such as information technology security analyst, network security architect or cyber risk analyst – all of which are jobs posted in Rhode Island right now, many of them listing six-figure salaries.