Study: Most of the Cyber Security Industry Is Facing a Serious Skills Shortage

While Hackers used to just be a 1995 movie featuring Angelina Jolie, they’ve actually become a pretty serious global problem in the business world. Granted, personal attacks will never go out of style, as the increased frequency of ransomware attacks has shown, but companies big and small have become the new target for hungry hackers due to their plentiful vulnerabilities across the board. And cyber security professionals are having a difficult time keeping up.

According to a report from Enterprise Strategy Group titled The Life and Times of Cybersecurity Professionals, 70 percent of cyber security professionals believe that their organization is being negatively impacted by the skills shortage in the tech industry. To make matters worse, “63 percent say the cyber security skills shortage has increased the workload on existing staff, 41 percent have had to hire junior personnel in lieu of more experienced staff, and 41 percent claim the cyber security staff spends a disproportional amount of time on incident response and limited time on planning and strategy.”

This is bad. If most companies are opting for inferior or non-existent cyber security measures, hackers will likely have free reign of corporate secrets, personal information, and pretty much whatever they want. Fortunately, there is a solution that, while expensive and lengthy, is the only real way to make a difference: continuous education.

“Much like the state of healthcare and medicine, cybersecurity changes all the time based upon hackers’ tactics, techniques, and procedures (TTPs), new technologies, etc,” wrote Jon Oltsik, an ESG senior principal analyst and founder of their cybersecurity service. “Consequently, continuous education is essential.”

While decision makers’ lack of awareness about the dangers of cyber attacks remains an issue, the skills gap presents a much more difficult problem to solve. You can’t merely convince employees to be better at cyber security like you could a founder that refuses to spend on protecting their company. Continuing education is the only way to make sure this issues is resolved. And that is, unfortunately, going to take some time.

Did you find this article helpful? Click on one of the following buttons
We're so happy you liked! Get more delivered to your inbox just like it.

We're sorry this article didn't help you today – we welcome feedback, so if there's any way you feel we could improve our content, please email us at

Written by:
Conor is the Lead Writer for For the last six years, he’s covered everything from tech news and product reviews to digital marketing trends and business tech innovations. He's written guest posts for the likes of Forbes, Chase, WeWork, and many others, covering tech trends, business resources, and everything in between. He's also participated in events for SXSW, Tech in Motion, and General Assembly, to name a few. He also cannot pronounce the word "colloquially" correctly. You can email Conor at
Explore More See all news
Back to top
close Thinking about your online privacy? NordVPN is's top-rated VPN service See Deals