Is there a recruitment crisis in the cybersecurity sector?

New research by ISSA suggests that despite rising cyber crime globally, recruitment to counter the threat is lagging a long way behind target numbers.

Recent research published in the fifth annual global study of cybersecurity professionals by the Information Systems Security Association (ISSA) and industry analyst firm Enterprise Strategy Group (ESG) indicates there is a recruitment crisis in the cybersecurity industry.

According to the research, the cybersecurity skills crisis continues on a downward, multi-year trend of bad to worse and has impacted more than half (57%) of organisations globally. 

The Life and Times of Cybersecurity Professionals 2021 report surveyed 489 global cybersecurity professionals and reveals that the crisis is taking on a number of different nuances that organisations are finding difficult to manage. Findings included:

  • An increasing workload for the cybersecurity team (62%)
  • Unfilled open job requisitions (38%)
  • High burnout among staff (38%).

Furthermore, 95% of respondents stated the cybersecurity skills shortage and its associated impacts have not improved over the past few years and 44% say it has only become worse and compounded by the Covid pandemic.

Notably, the three most often cited areas of significant security skills shortages include cloud computing security, security analysis and investigations, and application security.

Pieter Vanlperen of New York City-based PWV Consultants said: "There has been a known shortage of software developers in the technology industry for some time, security is no exception. There are currently about five jobs for every one developer (roughly), so the inability of companies to find cloud computing security pros isn’t all about knowledge. Much of the problem is around a simple lack of people rather than what people know. Even so, cloud computing is still more secure than traditional methods.

"Cloud service providers, ensure that storage systems are backed up thoroughly so that nothing gets lost, even in the event of a breach. They also have dedicated specialists who can walk businesses through how to use the cybersecurity services they offer. So, yes, cloud computing is still safe. Businesses should make sure they understand the security risks they assume versus what falls under the umbrella of the cloud provider so that proper adjustments can be made, but every business should be utilizing the cloud. Technology is eating the world, digital transformation trends force businesses into the cloud to stay competitive, and while it can be difficult to find developers to keep in-house, there are always experts who can be called upon for assistance."


Featured Articles

How secure is sensitive data stored in the cloud?

A Cloud Security Alliance (CSA) survey has found 67% of organisations store sensitive data in public cloud environments, but how secure is it?

CYBER LIVE LONDON: Day 2 highlights of the hybrid tech show

We take a look at highlights of the different stages at the Tech Live London show, including insights from Claroty, SalesForce and Oracle

TECH LIVE LONDON: An overview of the hybrid technology show

We take a look at the first day of Tech Live London with insights from technology leaders from companies such as IBM, Microsoft and Vodafone

Does a cashless society mean higher risk of fraud?

Cyber Security

5 minutes with Gary Brickhouse, CISO of GuidePoint Security

Cyber Security

CTO at Passbolt explains the importance of password managers

Application Security