Skip to main contentSkip to footer
Skip to content 
Key Takeaways
- 88% of cyber professionals report operational issues due to staffing shortages.
- 74% of CISOs lack cloud security expertise in their teams.
- 59% of organizations face high staffing costs related to SIEM tools.
- Upskilling through adjacent roles in IT and networking can help bridge the cyber skills gap.
Introduction
As cyber threats continue to rise, Chief Information Security Officers (CISOs) are grappling with an alarming challenge: finding qualified talent to protect their organizations. In fact, 88% of cybersecurity professionals report operational issues stemming from staffing shortages. The cyber skills gap is not only putting businesses at risk, but it’s also driving up costs for security platforms and their training—keeping CISOs up at night.
The Impact of Cyber Staffing Shortages on CISOs
Cybersecurity staffing shortages are a growing pain point for businesses worldwide. In 2024, the gap between the demand for skilled professionals and available talent has only widened. CISOs are feeling the pressure, as threats grow in both complexity and volume. With fewer hands on deck, teams are forced to work overtime, leading to burnout, security gaps, and overall decreased effectiveness.
Moreover, the cyber skills shortage is not just about finding bodies to fill seats; it’s about finding the right skills. The report from Command Zero highlighted that many CISOs are struggling to find professionals with the advanced expertise necessary to navigate today’s sophisticated cyber landscapes, particularly in cyber defense, cloud security, and incident response.
The Skills Gap: Where Are the Cybersecurity Experts?
According to the Skill Shortage List in New Zealand and Australia, cybersecurity professionals are in high demand, but the pool of qualified candidates is shrinking. Cyber roles often require a mix of expertise in networking, systems administration, and software development, making them hard to fill. The average cyber investigator must be a subject matter expert in analytics and hold administrator-level knowledge of data sources. Such high requirements narrow the talent pool drastically, leaving many organizations struggling to meet their security needs. In addition, 74% of CISOs reported a lack of sufficient public cloud skills in their teams, crucial for conducting high-quality investigations.
