Blog

Bridging the Cybersecurity Skills Gap: Insights from the MERIT Project Innovation Breakfast

Cybersecurity has become a cornerstone of digital resilience for enterprises across Europe. However, challenges such as digital skills gaps, complex security technologies, and limited tailored training opportunities hinder effective cybersecurity adoption. The MERIT project partners hosted an Innovation Breakfast on cybersecurity in Romania, bringing together industry experts, academics, and enterprise representatives to discuss these critical issues. The event validated key project findings related to skills needs and market trends, guiding the alignment of short-term cybersecurity courses with industry requirements. We thank to our main contributors Expertware, Orange, INFOSEC CENTER and the Technical University Gheorghe Asachi of Iași for sharing with us their knowledge and tech expertise.

The growing need for cybersecurity skills

During the event, discussions highlighted that many enterprises lack access to structured cybersecurity training, leaving them vulnerable to cyber threats. The demand for expertise in AI-driven security, cloud security, and secure software development is rising, but the availability of trained professionals has not kept pace. Emerging security frameworks, such as Zero Trust models and AI-enhanced threat detection, require specialized knowledge that is often difficult to acquire. Limited technical support and resource constraints further complicate the integration of these advanced solutions into enterprises operations.

Another key concern raised was the focus on theoretical knowledge in many existing cybersecurity programs, which often fail to provide hands-on experience in areas like incident response, penetration testing, and security automation. To bridge this gap, enterprises need practical, scenario-based training tailored to their operational environments. The conversation also emphasized the interdisciplinary nature of cybersecurity, requiring professionals to have expertise in AI, data science, risk management, and regulatory compliance.

Strengthening training and industry-academia collaboration

One of the central takeaways from the event was the urgent need for accessible, practical training programs. The MERIT project was appreciated for the initiative to develop short-term courses that address core topics while integrating real-world information gathered from the industry. A strong collaboration between enterprises, universities, and research institutions is essential to ensure that cybersecurity education remains aligned with industry needs. Internship and mentorship programs can further help students and professionals gain hands-on experience. 

AI and automation were also highlighted as crucial tools for cybersecurity education. AI-powered training platforms can personalize learning experiences, while automated security labs can provide enterprises with hands-on practice in threat detection and risk assessment. Additionally, beyond technical skills, cybersecurity professionals must develop strong communication, problem-solving, and ethical decision-making abilities. Training programs must incorporate these soft skills to ensure a well-grounded approach to cybersecurity workforce development.

Overcoming barriers to cybersecurity adoption

Despite the growing awareness of cybersecurity risks, many enterprises struggle with implementation due to limited resources and high costs. Advanced security solutions, such as AI-driven threat detection and Zero Trust architectures, require significant investment, which many enterprises find difficult to justify when balancing immediate operational priorities. Compliance with complex regulatory frameworks like GDPR, ISO 27001, and NIS2 also remains a challenge, as enterprises often lack the training to navigate these requirements effectively.

Resistance to change and the reliance on outdated legacy systems further hinder cybersecurity adoption. Many employees and decision-makers are hesitant to implement new security measures due to unfamiliarity or perceived complexity. Addressing these barriers requires increased awareness efforts, clearer guidance on compliance, and financial support mechanisms that enable SMEs to invest in cybersecurity infrastructure. To bridge this gap, initiatives like the ones of Digital Innovation Zone EDIH could play a crucial role by engaging directly with SMEs, assessing their specific challenges, and providing tailored consultations. This approach would help each company identify the most relevant improvement path and implement practical, customized security measures to strengthen their overall cybersecurity posture.

The NIS2 directive and the need for enterprises cybersecurity training

The introduction of the NIS2 Directive places additional cybersecurity responsibilities on enterprises, including the implementation of risk-based security measures, enhanced incident response capabilities, and strengthened supply chain security. Business leaders are now held accountable for cybersecurity governance, making structured training programs more crucial than ever. Ensuring compliance with these new regulations will require enterprises to prioritize cybersecurity education and workforce development.

The role of the MERIT project in addressing cybersecurity skill gaps

The MERIT project is aiming to bridging the cybersecurity skills gap by facilitating industry-academia partnerships and delivering targeted training initiatives. Key strategies include developing short-term courses tailored to industry needs, fostering closer collaboration between universities and industry experts, and offering compliance-focused training to help enterprises navigate evolving regulations.To support enterprises in adopting advanced cybersecurity measures, the MERIT project offers a range of short-term courses, industry engagement workshops, and collaborative initiatives designed to enhance digital resilience. SMEs and professionals looking to strengthen their cybersecurity capabilities are invited to explore upcoming training opportunities or participate in industry-focused discussions. For tailored guidance, direct consultations, or more information on how to get involved, please contact info@digitalmerit.eu. Let’s take the next step in securing our digital future together.