Cybercrime continues to grow at unprecedented rates and is expected to surpass $10 trillion in 2025. Unfortunately, so does its primary target — data.
According to Cybersecurity Ventures, 200 zettabytes of data will soon be stored globally — half of which will be stored in the cloud. This is an enormous quantity of an extremely valuable commodity that only grows every time a new user connects to the internet. Of note, it is believed that more than 400 million terabytes of data — or .4 zettabytes — are created daily. To help fully understand the magnitude of such a large number, just one zettabyte represents 250 trillion downloaded songs, roughly 350 trillion one-minute YouTube videos, or 50 quadrillion average emails without attachments. While data is valuable for a multitude of reasons, what is at stake nowadays is so much more than most people could have ever imagined.
At this juncture, the industry would benefit from reframing the work from protecting corporate assets to ensuring the world as we know it can continue to operate. After all, so much of our world now hinges upon technology. As we have seen on multiple occasions, disruptions to key components of the digital ecosystem, such as cloud providers or other prominent shared service providers, result in massive outages that cripple business operations — all of which is occurring more frequently than any consumer, traveler, or business owner cares for. Sadly, the centralization of services is counter to the original intent and design of the Internet; the growing number of mergers and acquisitions only worsens the outlook. The only constant for today’s digital defenders is change.
Occupational stress and burnout
According to ISACA’s State of Cybersecurity 2024 report, 66% of cybersecurity professionals indicate that their level of occupational stress is higher now than it was five years ago. When asked why their role is more stressful, 81% of respondents overwhelmingly attribute the increase to an increasingly complex threat environment. Three factors shared a distant second place — lower budgets, hiring/retention challenges, and unskilled staff — each of which garnered 45%.
The weaponization of AI by threat actors will surely complicate cyber defense. While the increasingly complex threat landscape wreaks havoc on enterprises and stakeholders, we can no longer ignore the toll it is taking on cybersecurity professionals. Burnout within the cybersecurity field has been reported for years, and this year’s data shows an uptick in those reporting cybersecurity professionals are switching careers altogether.
Concerns for employers
Compounding practitioner stress is the not-yet-realized effect on organizational readiness. Enterprises should be extremely concerned with an aging workforce. This year, the group of respondents between the ages of 45 and 54 surpassed the 35-to-44 age group. Additionally, the percentage of respondents who are ages 34 and below shows no increase. Fortunately, respondent data revealed a slight improvement in appropriate staffing, most likely attributed to global economic uncertainty. Further analysis revealed no correlation between staffing levels and whether enterprises were using AI to mitigate shortfalls.
Respondents also report an erosion of employer benefits. Notably, respondents reported major cuts to professional development training and flex hours. While employers are still covering employee certification fees, the percentage that pays recertification costs is much less, which only increases the overall financial strain on cybersecurity professionals.
Employers should hone in on occupational stress for their digital defenders. Although data points to a shrinking of benefits, this is an opportunity for employers to explore other ways to support staff to stave off burnout and attrition. Employees generally want to feel valued and supported. Cybersecurity professionals are no longer just protecting data — they serve on the front lines of a never-ending onslaught of cyberattacks where threat actors are not bound to fixed rules of engagement. The always-on mentality is wearisome, and enterprises should seek ways to provide relief. As the old leadership adage goes, take care of your people and they’ll take care of you.
