Cyber Workforce Growth Slows As Tight Budgets Restrict Hiring

Uploaded on 2024-10-07 in NEWS-Cybersecurity News, JOBS-Careers, FREE TO VIEW

The cyber workforce gap has grown to a record high of 4.8 million, with a total of 10.2 million security professionals now required to keep organizations protected globally. Growth of the global cyber security workforce has slowed for the first time in six years, according to new research, while cyber threats show no signs of slowing.

ISC2’s Cybersecurity Workforce Study has found that the global workforce amounted to 5.5 million people, marking a 0.1% year on year increase, whereas the labor pool had grown by as much as 8.7% year on year in 2023.

This makes 2024 the first year in which the cyber workforce has slowed in the six years since ISC2 began estimating the workforce size in 2018.

The cyber security workforce gap reached a new high with approximately 4.8 million professionals needed to effectively secure organisations around the world, marking a 19% year on year increase.

ISC2 noted that for the first time, respondents cited a ‘lack of budget’ as the primary factor driving their staff shortages, overtaking the lack of qualified talent, which participants have pointed to in previous years.

For example, 37% of respondents reported they had their budgets cut in the last year, up 7% year on year.

Budget pressures also came in the form of layoffs to security teams, which affected a quarter of the participants in the survey. A further 38% of cyber professionals said they had experienced hiring freezes at their organisation, which represents a 6% increase from 2023.

Similarly, almost one third (32%) of participants reported seeing fewer promotions at their company during this period.

The slowdown comes at a time cyber attacks are coming thick and fast, with 74% of cyber practitioners and IT decision-makers stating that the 2024 threat landscape was the most challenging it has been in the last five years.

UK is the Largest Decline in Cyber Workers around the Globe

Notably, a number of nations saw their cyber workforce shrink over the course of 2024, according to ISC2 estimates, including Canada, Germany, Mexico, the UK, and the US.

The number of UK cyber professionals dropped from 367,300 to 349,360 over the year, falling by almost 5%, the largest contraction around the world.

Moving to the US, cyber workers numbered 1,338,507 in 2023, and shrunk by 3% to 1,298,804 in 2024, but despite the decrease the region still held the largest active cyber workforce in the world.

Cyber Teams have no Young Talent Coming

The workforce deficit was not the only gap on the front of security practitioner’s minds, ISC2 noted, adding that skills shortages continue to plague organisations around the world.

More than half (58%) of the participants indicated that they faced skills shortages at their organisation, while 64% said skills gaps present a greater challenge to securing businesses than staffing shortages.

ISC2 argued this demonstrates that a large swathe of organisations do not have a steady flow of cyber professionals who can “develop their foundational skillset in-house to bolster existing teams and instead are relying solely on hiring pre qualified talent.”

IT Pro     |     ISC2     |     TCE     |     Yahoo     |     LinkedIn

Image: ThisIsEngineering

You Might Also Read:

Is Artificial Intelligence The Answer To The Cybersecurity Skills Shortage?:

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Protecting Company Data From The Risks Of Remote Working
Bristol Will Spend £3.2M On Municipal Cyber Security »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Magnet Forensics

Magnet Forensics

Magnet Forensics' family of digital forensics products are used globally by thousands of law enforcement, military, government and corporate customers.

Ixia

Ixia

Ixia provides testing, visibility, and security solutions to strengthen applications across physical and virtual networks.

Giesecke+Devrient (G+D)

Giesecke+Devrient (G+D)

Giesecke+Devrient develop security technologies in four major areas: enabling secure payment, providing trusted connectivity, safeguarding identities and protecting digital infrastructures.

Muninn

Muninn

At Muninn (aka Wehowsky), we specialize in mitigating potential risks within your network, providing one of the leading network detection and response (NDR) solutions on the market.

Cygilant

Cygilant

Cygilant is a SOC2 certified service provider that combines MSSP and Incident Detection and Response (IDR) capabilities managed by global SOCs staffed with trained security engineers.

Digital Security

Digital Security

Digital Security is an Ecuadorian company specialized in providing comprehensive information security solutions.

Salt Security

Salt Security

Salt Security protects the APIs that are the core of every SaaS, web, mobile, microservices and IoT application.

GreenWorld Technologies

GreenWorld Technologies

GreenWorld has a proven track record in industry leading IT asset management, secure data destruction and remarketing.

Intracom Telecom

Intracom Telecom

Intracom Telecom is a global telecommunication systems & solutions vendor offering a complete range of professional services and solutions including Information Security.

Acrisure

Acrisure

Acrisure is powered by the best of human and high-tech and offers insurance, reinsurance, real estate, cyber and more solutions to millions of clients around the world.

DataSolutions

DataSolutions

DataSolutions is a leading value-added distributor of transformational IT solutions in the UK and Ireland.

KATIM

KATIM

KATIM is a leader in the development of innovative secure communication products and solutions for governments and businesses.

Domotz

Domotz

Domotz enables IT teams to monitor and manage their networks remotely, while ensuring that the security and the operational efficiency of their organizations are properly maintained.

Afripol

Afripol

AFRIPOL was set up to strengthen cooperation between the police agencies of AU member states in the prevention and fight against organized transnational crime, terrorism, and cybercrime.

DNSFilter

DNSFilter

DNSFilter is the most accurate threat detection and content filtering tool on the market today.

IDCARE

IDCARE

IDCARE is Australia and New Zealand’s national identity & cyber support service. Our service is the only one of its type in the world.