Threat hunters expressed feeling significantly under-resourced and overburdened to function at their best, despite substantial security budget growth during the past few years, according to a Team Cymru study reported by SecurityWeek
Team Cymru fellow David Monnier attributed issues regarding threat hunting
to skills gap, not budget.
"The skills gap remains an issue in all facets of technology. We are probably a generation or two away from the time when society will really understand the technology we rely on. For example, threat hunting is not really a physical talent where you can see things happening, it involves abstract thinking," said Monnier.
Training or securing natural internal threat hunters would remove the need for organizations to increase their external threat reconnaissance staff, according to Monnier.
"External reconnaissance requires a different skill set to internal threat hunting, but it takes an understanding of the same skill set that can scale up," Monnier said.