A recent survey conducted by ISACA has shed light on the alarming challenges faced by IT security teams across Europe, revealing that these teams are overstressed, understaffed, and underfunded. The survey, which polled over 1,800 cybersecurity professionals, indicates that a staggering 61% of respondents believe their teams are operating below optimal staffing levels. Among those surveyed, 19% reported unfilled entry-level positions, while 48% indicated the same for roles requiring experience or advanced credentials. Notably, the percentage of unfilled positions has seen little improvement since 2023, highlighting a persistent workforce crisis in the cybersecurity sector.
In addition to staffing issues, the survey identified significant skills gaps among cybersecurity professionals. Over half of the respondents (52%) pointed to deficiencies in soft skills, which are increasingly recognized as vital in the cybersecurity landscape. The most critical soft skills noted include communication (54%), problem-solving (53%), and critical thinking (48%). This highlights a growing awareness among industry leaders that while technical skills are essential, the ability to communicate and collaborate effectively is equally important for navigating today’s complex threat environment.
The findings also revealed rising stress levels among cybersecurity professionals, with 68% claiming their roles have become more stressful over the past five years. The increasing complexity of cyber threats and the persistent talent shortage are primary contributors to this stress. Alarmingly, 41% of respondents noted that they are facing more cyber-attacks compared to the previous year, and 58% believe their organizations are likely to experience a cyber incident within the next year. This escalation in cyber threats underscores the urgent need for organizations to bolster their cybersecurity measures and resources.
ISACA Chief Global Strategy Officer Chris Dimitriadis emphasized the necessity for employers to prioritize both technical and soft skills during the hiring process. He stated that a diverse workforce, equipped with a range of skills and perspectives, is crucial for addressing the ongoing cybersecurity skills gap. Furthermore, organizations must invest in the development and training of new talent to enhance overall security resilience. With the stakes higher than ever, it is imperative that cybersecurity teams receive the support they need to safeguard critical infrastructure and combat the escalating threat landscape effectively.
