"Hiring and Retention in the Cybersecurity Workforce Remain Difficult"

Findings from a new ISACA report indicate that it is becoming increasingly difficult to hire and retain a cybersecurity workforce. According to the report, 63 percent of the 2,000 surveyed security workers say they have open positions, representing an 8 percent increase over 2021. Meanwhile, 62 percent of respondents report that their teams are understaffed. Many people have left the security profession, contributing to the understaffed security teams problem. Talent retention is a major challenge for 60 percent of respondents, a 7 percent increase from the previous year. According to the report, the top reasons for cybersecurity workers leaving their jobs are being recruited by other companies, poor financial incentives, limited promotion, high work stress levels, and a lack of management support. Although many employees are leaving, 20 percent of respondents said it could take more than six months to find qualified candidates for open positions. Over 60 percent of the security workers believe it takes more than three months on average to fill an open position. As a result, there is a constant need for talent, increasing the likelihood of employee churn, which wastes company time and resources. According to ISACA, once security workers are hired, another challenge that businesses face is a lack of skills. Cloud computing and implementing security controls are the most common skill gaps identified by respondents in the field today. Respondents say they use cross-training of employees as well as contractors and consultants more frequently to address skill gaps. Given the labor shortage, it is no surprise that many businesses are turning to managed cybersecurity services. This article continues to discuss key findings from ISACA's report on the state of the cybersecurity workforce. 

Security Intelligence reports "Hiring and Retention in the Cybersecurity Workforce Remain Difficult"