More than a third of the global cybersecurity workforce plans to change professions in the future due to frustrations with the industry, fueling a talent shortage that is impacting organizations’ ability to effectively secure their jobs. systems, according to an industry survey.
Commissioned by extended detection and response company Trellix, which split from McAfee in January 2022, the survey of cybersecurity professionals found their top three frustrations were the lack of a clear career path (35%), the lack of societal recognition for their work. (31%) and the limited support provided by their employers to develop their skills.
Although an overwhelming majority of 92% say cybersecurity “is meaningful and exciting work that motivates them”, 36% indicated that they feel a lack of recognition for their work, and a further 12% explicitly state that they consider leaving the profession because of it.
According to ISACA State of Cybersecurity 2022 report, released in March, the top reasons cybersecurity professionals leave their jobs are recruitment by other companies (59%), low financial incentives in terms of salary or bonus (48%), limited promotion and development opportunities (47%), high levels of work-related stress (45%) and lack of management support (34%).
Of those surveyed by Trellix, an additional 85% believe labor shortages are impacting their organizations’ ability to secure increasingly complex information systems and networks.
“Our industry is already 2.72 million people short,” said Trellix CEO Bryan Palma. “Cultivating and nurturing a cybersecurity workforce for our future requires expanding what we think of as talent and changing our practices in both the public and private sectors.
“Filling the cybersecurity talent gap is not only a business imperative, but also important to national security and our daily lives. We need to remove barriers to entry, actively work to inspire people to do moving work, and ensure those in the field are retained.
In trying to expand and retain the cybersecurity workforce, respondents said supporting skills development (85%) and pursuing certifications (80%) were “extremely important,” while 94 % thought employers should do more for community mentoring. programs through greater presence in schools.
A large majority of respondents (91%) also believe that greater efforts should be made to recruit people from more diverse backgrounds – of cybersecurity professionals surveyed, 78% were male, 64% Caucasian and 89% heterosexual.
Respondents indicated that inclusiveness and equality for women (79%), diversity of the cybersecurity workforce (77%), and pay gaps between different demographic groups (72%) were “extremely important” factors that the industry needs to address.
Additionally, 94% of respondents believe their employers could do more to consider employees from non-traditional backgrounds when it comes to cybersecurity, while 45% say they have worked in other careers.
Although 80% agreed that degrees are not necessary for a successful career in cybersecurity, 79% had degrees related to IT, IT or technology.
Separate research from VMWare found that during the pandemic, 51% of cybersecurity professionals felt extremely stressed and burnt out, while pentesting-as-a-service provider Cobalt found that more than half of cybersecurity professionals are considering quitting their job.
“With a general skills shortage in the market, any gaps in the teams maintaining critical infrastructure will be acutely felt and can often take months to fill,” Ilona Simpson, chief information officer for The Computer, told Computer. Europe, the Middle East and Africa at Netskope. Weekly. “Understaffed teams tend to be overworked, which can negatively impact mental health and team effectiveness.”