Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Tuesday, 7 July, 2026
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

New research reveals disconnect between global university education and recruitment standards

by The Gurus
January 17, 2024
in Featured
New research reveals disconnect between global university education and recruitment standards
Share on FacebookShare on Twitter

New research conducted in the UK and US reveals that over three-quarters (78%) of cybersecurity and IT professionals believe a traditional university education in cybersecurity is not doing enough to prepare graduates for the modern workforce. Meanwhile, nearly two-thirds (64%) of cyber industry professionals say current recruitment processes inadequately assess candidates’ practical skills.

This is according to a new study called ‘Securing the future of cybersecurity: From classroom to every career stage’ from Hack The Box, a leading cybersecurity upskilling, certification, and talent assessment platform.

Higher education needs to adapt to modern threats 

The research highlights a gap between the essential practical skills required to combat modern cyber-criminals in the workplace and the expertise cultivated within university education. An overwhelming 90% emphasize the need for cybersecurity and computer science graduates to be prepared with hands-on, practical experience before their first role.

Yet, over three-quarters of respondents express concerns about university education meeting this requirement, a worry that rises to 83% in the UK. The study highlighted that amongst all surveyed groups, those entering the cybersecurity field at ages 18-24 felt most strongly that traditional education isn’t fully equipping them for the workforce.

Haris Pylarinos, CEO and co-founder at Hack The Box, says: “Universities worldwide excel in laying the groundwork for cybersecurity careers. However, the game has changed in the industry. Cybercriminals don’t play by the rule book and are, therefore, always one step ahead. University curriculums need to adapt by prioritizing hands-on learning experiences focused on real-world criminal techniques, concurrently instilling the hacker mindset in students – the next generation of cybersecurity professionals –  fostering the ability to think like attackers and increasing their creativity and engagement while enhancing their proactive and reactive approach to the various cybersecurity challenges. It’s particularly concerning that our research shows recent graduates are entering the workforce unprepared. This underscores the need for a change in the education system that will help rebalance the scales in favor of professionals.”

Red tape and outdated recruitment processes plaguing the industry

A similar pattern occurs within businesses’ assessments, with 64% asserting that existing recruitment processes inadequately assess candidates for their practical skills in addressing ever-evolving cyber threats.

Yet, when surveyed, cybersecurity professionals clearly prioritize practical skills and experience over traditional education for newcomers entering the industry. Specifically, they place greater emphasis on cybersecurity-specific certifications (47%), followed by relevant work experience (42%), practical experience gained from CTFs or hacking competitions (41%), and self-taught initiatives (36%). University degrees are ranked as of the least value for them when it comes to assessing cybersecurity and IT talent for a role.

Untapped talent pool waiting in the wings 

The emphasis on conventional learning methods is acknowledged as a contributing factor to the industry’s talent shortage. In fact, 80% of global professionals attribute the primary entry barriers in the field to favoring degrees over real-world, practical experience.

Pylarinos continues: “Our industry grapples with its most significant global shortage, currently at 4 million. Traditional recruitment processes only fuel this problem, creating red tape for capable individuals waiting in the wings to fill the gap. Relying solely on university degrees is no longer effective; assessments must equally emphasize testing candidates against real-world threats. Companies valuing practical experience and embracing talented, ethical hackers with hands-on experience will be best placed to succeed.”

Reshaping recruitment 

The study highlights key areas the cybersecurity community feels need improvement within current talent processes. For example, 48% of cyber professionals want to see closer collaboration with recruitment and HR teams, and 46% advocate prioritizing relevant hands-on experience over formal degrees. Additionally, 39% suggest integrating practical assessments into interviews.

As a result, Hack The Box calls for a change in university education and recruitment processes, with practical learning and assessments as the cornerstone of education and talent strategies.

ShareTweet
Previous Post

Keeper Security Adds Support for Hardware Security Keys as Sole 2FA Method

Next Post

Salt Security Delivers another Technology Breakthrough with Industry’s only API Posture Governance Engine

Recent News

pentesting

Pentesting is dead. Long live pentesting.

July 3, 2026
AI Appreciation Day: Celebrating Progress, Embracing Responsibility

The industries being reimagined by AI

July 2, 2026
geopolitical cyber report

Iran-linked MuddyWater espionage campaign targets organisations across four continents

July 1, 2026
Check Point Brings Cloud Firewall to AWS European Sovereign Cloud

Check Point Brings Cloud Firewall to AWS European Sovereign Cloud

July 1, 2026

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2024 IT Security Guru - Website Managed by Dessol

  • About Us
Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2024 IT Security Guru - Website Managed by Dessol