Get All Access for $5/mo

4 Reasons You Need Developers With Cybersecurity Skills in All Tech Teams Beyond having dedicated experts, it is equally important to improve the practical security skills of all developers.

By Istvan Lam Edited by Dan Bova

Opinions expressed by Entrepreneur contributors are their own.

ronstik | Getty Images

According to a recent study, the global demand for cybersecurity professionals will create more than one million unfilled cybersecurity positions by 2019, with one of the most desired skills being secure software development. No wonder, that entrepreneurs and companies are having increasingly hard time finding the security talent they need to build reliable services and keep the data of their users safe.

One way to bridge the skills gap and create more secure products is to train and hire more engineers specialized in cybersecurity. However, it is equally important to improve the cryptography and security skills of all developers working in your company, beyond those sitting in dedicated cybersecurity teams. Here are some thoughts on the reasons.

1. New apps generate more data and more risks.

The rise of medical, fitness and fintech apps along with the increasing number of connected devices produce loads of sensitive data about us. We're trusting these apps with our healthcare records, banking information, and even the locations we visit the most. If companies creating these services lack security talent and a strategy for secure development, there's a high risk that all of that information could be exposed to cyber security threats. For any company dealing with user data, global growth is not possible without taking security serious in all stages of the development.

Related: 6 Reasons Smart Small Business Owners Invest In Security

2. Companies need security by design.

No matter how robust your password hashing algorithms are, if your database security is weak, your users' data is at risk. Companies need to develop software with security in mind from day one in order to build secure systems and minimize vulnerabilities. You can construct the strongest castle out there, if you leave the gates weak, you will still lose the battle.

3. Make educated decisions on trade-offs.

It's not always easy to create both secure and user-friendly solutions. Making sure your level of security is top-notch might increase development time for a feature that is not really visible for end-users and in some cases it might affect the performance of your software as well. With that in mind, developers make important decisions on "what's secure enough" for their use case. To find the right balance of security and usability or performance, they need to have practical knowledge of cryptography.

Related: 7 Cybersecurity Layers Every Entrepreneur Needs to Understand

4. Integrating crypto components helps.

Security challenges are frequently solved by integrating third-party components and SDKs. Even though they take most of the crypto off programmers' shoulders, choosing and integrating them properly on all platforms and in a scalable way requires actionable knowledge on security. Also, integrating tools require regular maintenance and updates: not only do you have to find the right components, but you also have to make sure they work together properly.

Related: 10 Tips for Finding and Hiring a Top Developer

For a number of tasks related to writing secure code and minimizing vulnerabilities, application developers, front-end, back-end and dev ops teams need an actionable set of cryptography and cybersecurity skills. We're not talking about an in-depth understanding of the theoretical background, which is absolutely a must for your cryptography engineers, but a solid understanding of the main rules, best practices, do's and don'ts.

Building this talent in your company starts at finding the right people who are willing to learn and continues with encouraging all developers to exchange knowledge with your security engineers inside the organization as well as providing training opportunities to all.

Istvan Lam

Founder and CEO of Tresorit

Isvan Lam is the CEO and co-inventor of Tresorit’s encryption technology. From a very young age, Istvan had a deep interest in security and cryptography. During his time as a University student, Istvan needed a secure cloud service where he could store his personal files and intellectual property securely. Feeling that no option on the market provided the top-tier security he required, Istvan went on to develop Tresorit in 2011, deploying the strictest data security regulations backed by the company’s patent-pending cryptographic encryption technology.

Want to be an Entrepreneur Leadership Network contributor? Apply now to join.

Editor's Pick

Growing a Business

He Immigrated to the U.S. and Got a Job at McDonald's — Then His Aversion to Being 'Too Comfortable' Led to a Fast-Growing Company That's Hard to Miss

Voyo Popovic launched his moving and storage company in 2018 — and he's been innovating in the industry ever since.


ChatGPT is Becoming More Human-Like. Here's How The Tool is Getting Smarter at Replicating Your Voice, Brand and Personality.

AI can be instrumental in building your brand and boosting awareness, but the right approach is critical. A custom GPT delivers tailored collateral based on your ethos, personality and unique positioning factors.

Business Ideas

63 Small Business Ideas to Start in 2024

We put together a list of the best, most profitable small business ideas for entrepreneurs to pursue in 2024.

Business News

Is the AI Industry Consolidating? Hugging Face CEO Says More AI Entrepreneurs Are Looking to Be Acquired

Clément Delangue, the CEO of Hugging Face, a $4.5 billion startup, says he gets at least 10 acquisition requests a week and it's "increased quite a lot."

Business News

Apple Reportedly Isn't Paying OpenAI to Use ChatGPT in iPhones

The next big iPhone update brings ChatGPT directly to Apple devices.

Business News

You Can Now Apply to Renew Your U.S. Passport Online — But There's a Catch

The U.S. State Department officially launched the beta program this week.