Business Wire

IL-ISACA

Share
State of the Cybersecurity Workforce: New ISACA Research Shows Highest Retention Difficulties in Years

The Great Resignation is plaguing industries across the board—but it’s especially challenging within in-demand fields like cybersecurity. According to ISACA’s new survey report, State of Cybersecurity 2022: Global Update on Workforce Efforts, Resources and Cyberoperations , organizations are struggling more than ever with hiring and retaining qualified cybersecurity professionals and managing skills gaps.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20220323005803/en/

The eight annual survey features insights from more than 2,000 cybersecurity professionals around the globe, and examines cybersecurity staffing and skills, resources, cyberthreats and cybersecurity maturity.

Hiring and retention challenges

As in past years, filling cybersecurity roles and retaining talent continues to be a challenge for many enterprises. Sixty-three percent of respondents indicate they have unfilled cybersecurity positions, up eight percentage points from 2021. Sixty-two percent report that their cybersecurity teams are understaffed. One in five say it takes more than six months to find qualified cybersecurity candidates for open positions.

Sixty percent of respondents report difficulties retaining qualified cybersecurity professionals, up seven percentage points from 2021. The top reasons that cybersecurity professionals are leaving their jobs include:

  1. Recruited by other companies (59 percent)
  2. Insufficient salary or bonus (48 percent)
  3. Limited advancement opportunities (47 percent)
  4. High stress levels (45 percent)
  5. Poor management support (34 percent)

Skills gaps and mitigation

Respondents note that the top skills gaps they see in today’s cybersecurity professionals are soft skills (54 percent), cloud computing (52 percent) and security controls (34 percent). Soft skills also top the list of skills gaps among recent graduates, at 66 percent.

To address these skills gaps, respondents note that cross training of employees and increased use of contractors and consultants (up five percentage points from the year prior) are the main ways they mitigate technical skill gaps. Just over half (52 percent) say their enterprises require university degrees, a six-percentage-point decrease from 2021.

“The Great Resignation is compounding the long-standing hiring and retention challenges the cybersecurity community has been facing for years, and systemic changes are critical,” says Jonathan Brandt, ISACA Director, Professional Practices and Innovation. “Flexibility is key. From broadening searches to include candidates without degrees to providing support, training and flexible schedules that attract and retain qualified talent, organizations can move the needle in strengthening their teams and closing skills gaps.”

Budgets Leveling

Forty-two percent say their cybersecurity budgets are appropriately funded—the highest percentage in eight years, up five percentage points from 2021, and the most favorable report since ISACA began doing this survey. Fifty-five percent of respondents also expect their enterprises to have budget increases, while 38 percent expect no change, and multiyear data suggests budgets are leveling.

Threat Landscape

This year, 43 percent of respondents indicate that their organization is experiencing more cyberattacks, an eight-percentage-point increase from 2021.

Enterprise reputation (79 percent), data breach concerns (70 percent) and supply chain disruptions (54 percent) are the top concerns related to cyberattacks for respondents. While ransomware attacks top the headlines, the survey found that ransomware attacks have remained virtually unchanged from last year, at 10 percent. Other top types of cyberattacks experienced in the past year include:

  1. Social engineering (13 percent)
  2. Advanced persistent threat (12 percent)
  3. Security misconfiguration (10 percent)
    Ransomware (10 percent)
  4. Unpatched system (9 percent)
    Denial of service (9 percent)

Despite the threats they face, 82 percent of respondents—an all-time high, and a five-percentage-point increase from last year—indicate they are confident in their cybersecurity team’s ability to detect and respond to cyberthreats.

Cybermaturity

When it comes to cyberrisk assessments, 41 percent of survey respondents say their enterprises conduct them annually, up two percentage points from last year. One-third of respondents say their enterprise conducts them more than annually.

Learn More

Brandt and Mark St. John, senior vice president, product, at LookingGlass Cyber Solutions, will discuss these findings further in a free webinar taking place on 31 March at 12:00 PM EDT (4 PM UTC). To register, visit https://store.isaca.org/s/lt-event?id=a334w000004gM03AAE .

“It’s important to understand the trends across the community over time as well as how one’s organization compares. This is necessary information to help advance the field as a whole, and we’re proud to be a part of sharing and disseminating these insights,” says Mary Yang, Chief Marketing Officer at LookingGlass Cyber Solutions. “LookingGlass is thrilled to support the cybersecurity community by partnering with ISACA on this report.”

The State of Cybersecurity 2022 survey report is free at www.isaca.org/state-of-cybersecurity-2022 .

About ISACA

ISACA leverages the expertise of its more than 150,000 members who work in information security, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 220 chapters.

Link:

ClickThru

About Business Wire

Business Wire
Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

LTIMindtree Launches GCC-as-a-Service1.7.2025 11:30:00 CEST | Press release

An integrated, AI-powered offering with deep industry expertise to drive growth and transformation LTIMindtree [NSE: LTIM, BSE: 540005], a global technology consulting and digital solutions company today introduced its GCC-as-a-Service. The services cater to organizations that may want to set up GCCs, scale their existing ones to optimize costs and create added value. The catalogue covers a spectrum of Build, Operate, Transform and Transfer services, offering clients the option to pick and choose what they require. GCC-as-a-Service commercials are designed on a per-seat or per service basis to ensure cost optimization and value realization. LTIMindtree’s Talent Solutions, part of our Build Services enables clients efficiently onboard business-ready talent from day one through its in-house AI-powered talent acquisition ecosystem. As a part of Transform Services, the Company provides industry specific offerings; technological solutions and frameworks that lead to acceleration of value re

Network Failures Cost $5M A Year for More Than a Quarter of Global Businesses, According to Expereo1.7.2025 10:00:00 CEST | Press release

Half of global businesses have been forced to urgently re-evaluate their tech infrastructure following a wave of high-profile IT outages Network instability is taking a serious toll on global businesses, with over a quarter (28%) reporting revenue losses of up to $5 million due to network outages or poor performance. Alarmingly, an additional 23% have experienced losses exceeding $5 million. These findings come from an IDC InfoBrief commissioned by Expereo, titled “Enterprise Horizons 2025: Technology Leaders Priorities: Achieving Digital Agility.” Following a series of high-profile IT disruptions over the past year, ranging from cybersecurity breaches to connectivity failures, nearly half (49%) of global businesses have been compelled to re-evaluate their technology infrastructure, and 40% of global tech leaders say it’s caused networking and connectivity to rise higher up the C-suite agenda. Perhaps as a result, networking/connectivity now comes out on top in terms of the technologie

Record Financing for NeXtWind: €1.4 Billion for the Expansion of Wind Energy in Germany1.7.2025 09:52:00 CEST | Press release

Innovative platform financing enables debt investments in renewable energy on an unprecedented scale NeXtWind plans to quadruple the capacity of more than half of its 37 wind farms by 2028 as part of an increase of its total generation capacity to 3 GW Lars B. Meyer, Co-CEO of NeXtWind, said: “Thanks to this novel platform approach, we can optimize our wind farms more quickly and accelerate our growth. In the long term, we aim to transform them into state-of-the-art, integrated clean energy hubs.” NeXtWind, a leading renewable energy company, has secured €1.4 billion in debt financing. The agreement also includes an additional €1.3 billion in so-called accordion facilities, which can be activated in tranches over the coming years. This syndicated loan is the largest of its kind for an independent wind energy provider in Germany, and it opens the onshore wind market to debt investments from major financial institutions both domestically and internationally. NeXtWind will use the new fin

Celero Ventures Opens $25 Million Early-Stage Fund to Investors Backing the Next Generation of European Software Companies1.7.2025 09:30:00 CEST | Press release

Celero Ventures, a new venture capital firm founded by experienced software operators Dave Wyatt and Nick Cochran, is now raising its debut $25 million fund to invest in early-stage startups across the UK and Europe. The fund, which is already 25% subscribed, targets pre-seed and seed-stage companies building next-generation AI and data infrastructure. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250701820933/en/ Nick Cochran and David Wyatt (right) Founders of Celero Ventures Based in London, Celero Ventures is inviting limited partners (LPs) to join its mission of backing exceptional technical founders and accelerating their path to product-market fit and scalable growth. Wyatt and Cochran bring a rare combination of deep go-to-market (GTM) experience and startup leadership. Together, they helped scale both MuleSoft and Databricks—two of the most successful enterprise software companies of the past decade. Their experien

3GPP MCX Standards-Based Hytera HyTalk MC 6.0 Released Globally1.7.2025 09:00:00 CEST | Press release

Hytera, a leading global provider of professional communications technologies and solutions, announced the worldwide release of Hytera HyTalk MC 6.0, its new-generation broadband mission-critical communication platform fully compliant with the 3GPP MCX standard Release 18. As a key part of Hytera’s convergence-native communications strategy, it delivers inclusive, efficient and secure communication over LTE cellular network. Hytera HyTalk MC 6.0 leverages 3GPP standard interfaces and Hytera’s proprietary protocols to enable deep interworking across different technologies and vendors. It enables real-time mapping between the signaling of 3GPP MCX and Hytera DMR, and interconnects with HyteraTETRA systems, allowing a smooth migration path to data-rich communications for mission- and business-critical institutions and users. Hytera DMR or TETRA two-way radios can communicate with LTE/5G terminals through the Hytera HyTalk MC platform in a hybrid network. The Ad-Hoc Temporary Group Call fe

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye