cybersecurity assurance stands on three legs – people, policy and products. CISOs have lamented that cybersecurity assurance is weighted down by a shortage of talent with the right skills. A skills shortage isnt just a human resources problem, it also has implications for policy and product too. Many organizations have opted to hire individuals with an aptitude to acquire the necessary skills on the job rather than demonstrated experience. Technology choices must complement the policies and personnel strategies amid the skills constraints in the market today.”]