Cyber Workforce Growth Slows As Tight Budgets Restrict Hiring

Uploaded on 2024-10-07 in NEWS-Cybersecurity News, JOBS-Careers, FREE TO VIEW

The cyber workforce gap has grown to a record high of 4.8 million, with a total of 10.2 million security professionals now required to keep organizations protected globally. Growth of the global cyber security workforce has slowed for the first time in six years, according to new research, while cyber threats show no signs of slowing.

ISC2’s Cybersecurity Workforce Study has found that the global workforce amounted to 5.5 million people, marking a 0.1% year on year increase, whereas the labor pool had grown by as much as 8.7% year on year in 2023.

This makes 2024 the first year in which the cyber workforce has slowed in the six years since ISC2 began estimating the workforce size in 2018.

The cyber security workforce gap reached a new high with approximately 4.8 million professionals needed to effectively secure organisations around the world, marking a 19% year on year increase.

ISC2 noted that for the first time, respondents cited a ‘lack of budget’ as the primary factor driving their staff shortages, overtaking the lack of qualified talent, which participants have pointed to in previous years.

For example, 37% of respondents reported they had their budgets cut in the last year, up 7% year on year.

Budget pressures also came in the form of layoffs to security teams, which affected a quarter of the participants in the survey. A further 38% of cyber professionals said they had experienced hiring freezes at their organisation, which represents a 6% increase from 2023.

Similarly, almost one third (32%) of participants reported seeing fewer promotions at their company during this period.

The slowdown comes at a time cyber attacks are coming thick and fast, with 74% of cyber practitioners and IT decision-makers stating that the 2024 threat landscape was the most challenging it has been in the last five years.

UK is the Largest Decline in Cyber Workers around the Globe

Notably, a number of nations saw their cyber workforce shrink over the course of 2024, according to ISC2 estimates, including Canada, Germany, Mexico, the UK, and the US.

The number of UK cyber professionals dropped from 367,300 to 349,360 over the year, falling by almost 5%, the largest contraction around the world.

Moving to the US, cyber workers numbered 1,338,507 in 2023, and shrunk by 3% to 1,298,804 in 2024, but despite the decrease the region still held the largest active cyber workforce in the world.

Cyber Teams have no Young Talent Coming

The workforce deficit was not the only gap on the front of security practitioner’s minds, ISC2 noted, adding that skills shortages continue to plague organisations around the world.

More than half (58%) of the participants indicated that they faced skills shortages at their organisation, while 64% said skills gaps present a greater challenge to securing businesses than staffing shortages.

ISC2 argued this demonstrates that a large swathe of organisations do not have a steady flow of cyber professionals who can “develop their foundational skillset in-house to bolster existing teams and instead are relying solely on hiring pre qualified talent.”

IT Pro     |     ISC2     |     TCE     |     Yahoo     |     LinkedIn

Image: ThisIsEngineering

You Might Also Read:

Is Artificial Intelligence The Answer To The Cybersecurity Skills Shortage?:

If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Protecting Company Data From The Risks Of Remote Working
Bristol Will Spend £3.2M On Municipal Cyber Security »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Brit

Brit

Brit PLC is a market-leading global specialty insurer and reinsurer, focused on underwriting complex risks including cyber, privacy and technology.

HyTrust

HyTrust

HyTrust specialises in security, compliance and control software for virtualization and cloud environments.

Syhunt Security

Syhunt Security

Syhunt is a leading player in the web application security field, delivering its assessment tools to a range of organizations across the globe.

Jeffer Mangels Butler & Mitchell LLP (JMBM)

Jeffer Mangels Butler & Mitchell LLP (JMBM)

JMBM is a full service law firm providing counseling and litigation services in a wide range of areas including cyber security.

Infosec (T)

Infosec (T)

Infosec (T) Limited is an independent Tanzania based consultancy specializing in IT governance, information security and IT audit.

Salviol Global Analytics

Salviol Global Analytics

Salviol Global Analytics is a leading provider of Fraud, Risk and Operational Performance Solutions to a number of vertical markets including Insurance, Banking, Utilities, Telco’s and Government.

Cynamics

Cynamics

Cynamics is the only network monitoring solution built specifically for Smart City, Public Safety and Critical Infrastructure networks.

CYBAVO

CYBAVO

CYBAVO is a cryptocurrency security company founded by experts from the cryptocurrency and security industries.

Trusted Connectivity Alliance (TCA)

Trusted Connectivity Alliance (TCA)

Trusted Connectivity Alliance is a global, non-profit industry association which is working to enable a secure connected future.

SecurityGen

SecurityGen

SecurityGen is a global cybersecurity start-up focused on telecom security, with a focus on 5G networks.

Coviant Software

Coviant Software

Coviant Software delivers secure managed file transfer (MFT) software that integrates smoothly and easily with business processes.

ZINAD IT

ZINAD IT

ZINAD is an information security company offering state-of-the-art cybersecurity awareness products, solutions and services.

IBM Security

IBM Security

IBM manufactures and markets computer hardware, middleware and software, and offers hosting and consulting services in areas ranging from mainframe computers to nanotechnology.

Sitehop

Sitehop

Sitehop is a cybersecurity technology company developing and supplying FPGA hardware-enforced cyber security solutions for networks.

Axiotrop

Axiotrop

AXIOTROP is a Cybersecurity firm offering leading services in assessment, remediation, and validation to protect the confidentiality, integrity, and availability of regulated information.

HardTarget

HardTarget

HardTarget is a cutting-edge cyber training company serving HWN (High-Net-Worth) Families and their trusted Advisors.