Lack of Cybersecurity skills and competencies required for cybersecurity technical work. 

This risk lies in the unavailability of skilled personnel with expertise in information technology and cybersecurity.  

No Control  

1. Availability of training plans for ICT functional needs.  
2. Development of employee motivation plans to retain employees and attract external expertise.  
3. Implementation of training programs for ICT employees that help raise their competencies and skills.  
4. Periodic monitoring of retention, recruitment, and attrition rates for ICT employees.  
5. Availability of external employment alternatives for highly qualified and skilled employees.  

The chairman of risk management sub-committee in UTAS-SUR
Dr.Sami Al-Batashi, Phone: +968 9293 9604
Email: sami.albattashi@utas.edu.om

Risk Management Committee in UTAS-SUR

Medium

High

Medium

1. Actions taken to prevent recurrence include assigning a replacement employee with the appropriate skill to compensate for the shortfall.  
2. Training other individuals on the required competencies and skills.  
3. Updating the training and recruitment plan to find new replacements.  
4. Coordinating with Human Resources to hire new qualified employees.  

By sending the final report explaining the problem causes and how we can mitigate next time.