Cybersecurity Woes Worsen: Skills Gap Blamed for Rise in Breaches
A new report by Fortinet, a leading cybersecurity company, reveals a growing concern for businesses worldwide: the cybersecurity skills gap. The report, titled “2024 Global Cybersecurity Skills Gap Report,” surveyed IT and cybersecurity decision-makers from across the globe and found that a significant shortage of qualified professionals is putting organizations at risk.
“The findings from our 2024 Cybersecurity Skills Gap Report highlight a critical issue facing organizations in the United Arab Emirates,” says Alain Penel, VP – Middle East, Turkey and CIS, at Fortinet. “Close to 58% of IT decision-makers cited the lack of training and upskilling opportunities as being their biggest challenge. This underscores the urgent need for enhanced cybersecurity training and certification programs, as 94% of our respondents said they were ready to pay to get their employees cybersecurity certified. It is also encouraging to see that 92% of IT decision-makers actively women into security roles, while 74% had plans to introduce diversity goals over the next 2-3 years. Fortinet is committed to supporting organizations to build a resilient cybersecurity posture by providing comprehensive training and certification programs through our pledge to train 1 million people in cyber by 2026. We aim to empower professionals with the necessary skills to protect against evolving cyber threats and secure their organizations effectively.”
Key findings:
- Breaches on the Rise: Nearly 90% of surveyed organizations reported experiencing a security breach in the past year, with many attributing it, at least partially, to a lack of cybersecurity expertise. This number has been steadily increasing over the past few years.
- Leaders Held Accountable: Cybersecurity incidents have a more substantial financial impact, with over half of respondents experiencing losses exceeding $1 million. Additionally, executives are increasingly facing consequences for breaches, with over 50% reporting directors or executives being penalized.
- Cybersecurity a Boardroom Priority: The report highlights a positive trend: boards of directors recognise cybersecurity as a critical business issue. Nearly all respondents (97%) said their boards view cybersecurity as a top priority.
- Certifications Matter: The report finds that employers highly value certifications as a way to validate cybersecurity skills. Over 90% of respondents said they prefer hiring candidates with certifications, and nearly 90% would be willing to pay for employee certifications.
- Finding Qualified Talent Remains Difficult: Despite the emphasis on certifications, more than 70% of respondents reported difficulty finding candidates with the necessary technical certifications.
- Diversifying the Workforce: Organizations are looking beyond traditional hiring pools to fill open positions. While diversity hiring goals remain steady, the report finds a slight decrease in the percentage of female and veteran hires compared to previous years.
- Three-Pronged Approach to Security: The report emphasizes a multi-faceted approach to cybersecurity that includes:
a. Training and certifications for IT and security teams
b. Building cybersecurity awareness among all employees
c. Implementing effective security solutions
The report paints a concerning picture of the cybersecurity landscape. With the growing threat of cyberattacks and the increasing cost of breaches, businesses need to take immediate steps to address the skills gap. This includes investing in training and certifications for their employees, diversifying their hiring pools, and implementing a comprehensive cybersecurity strategy.