Cybersecurity Crisis: Professionals Strained As Attacks Surge And Resources Shrink

Cybersecurity professionals are under unprecedented strain as cyberattacks rise and AI complicates the threat landscape.

A new research from the Information Systems Audit and Control Association (ISACA) indicates that 66% of cybersecurity professionals report their roles have become more stressful than five years ago.

The findings are part of the 2024 State of Cybersecurity report, which surveyed over 1,800 professionals about their experiences and challenges in the field.

The report reveals that the top factors contributing to this increased stress include an increasingly complex threat landscape, low budgets, worsening hiring and retention challenges, and insufficiently trained staff.

The study also found that 38% of organizations are experiencing a rise in cyberattacks, up from 31% last year.

Common types of attacks include social engineering, malware, unpatched systems, and denial of service attacks.

Alarmingly, nearly half of respondents expect their organization to suffer a cyberattack within the next year, with only 40% expressing confidence in their team’s ability to effectively detect and respond to these threats.

In a separate study, ISACA reported that 61% of European cybersecurity professionals believe their teams are understaffed, while over half feel their organizations’ cybersecurity budgets are underfunded.

The impact of these challenges on professionals’ well-being is significant; 68% say their roles are more stressful now compared to five years ago, largely due to the increasingly complex threat landscape.

Furthermore, 41% of respondents reported experiencing more cyberattacks than in the previous year, and 58% anticipate an attack in the coming year.

Chris Dimitriadis, ISACA’s Chief Global Strategy Officer, emphasized the urgency of addressing funding and staffing issues. He warned that without strong, skilled teams, the security resilience of entire ecosystems is at risk, leaving critical infrastructure vulnerable.

Despite the pressing need for skilled professionals, 19% of organizations report unfilled entry-level positions, while 48% have vacancies requiring experience or credentials.

The research also highlights a significant skills gap, particularly in soft skills, with 52% of respondents reporting deficiencies. Among these, communication, problem-solving, and critical thinking are deemed most crucial.

Mike Mellor, Adobe’s Vice President of Cyber Operations, underlined the importance of adopting secure authentication methods. He emphasized that fostering a culture of security through training is essential for organizations facing evolving cyber threats, as reported by ISACA.

As the cyber landscape continues to evolve, addressing the challenges of funding, staffing, and skill development will be crucial for building resilient cybersecurity teams capable of effectively countering sophisticated threats.