The biggest problem is burnout in cybersecurity

According to what I would call an opinion piece, a very interesting article talks about burnout in the industry.

Sophos and others have done research on this topic, and they talk about it in this article.

According to the article:

Sophos’ report states that the top main causes of burnout are a combination of the role, resource shortages, and management pressure, namely:

  • Lack of resources available to support cybersecurity activities, including staff shortages, budget restrictions, and limited third-party support.
  • The routine aspects of the role create a feeling of monotony, interspersed with challenging moments of activity.
  • An increased level of pressure from board and/or executive management, increasingly as these groups come under pressure from changing regulatory and legal obligations relating to cybersecurity.
  • Alert overload is where professionals face persistent alerts from tools and systems, all of which require prioritization and action, even if the majority are false alarms
  • The increase in threat activity and the adoption of new technologies have contributed to a more challenging, ‘always-on’ environment.

We also have to talk about staff shortages, lack of oversite, lots to do, and other factors.

The real threat to cybersecurity isn’t cybercrime, it’s burnout | Cybernews is the article. Feel free to take a look at it if you wish.

Do you think I’m starting to get burned out with TSB, the security hour, and talking about the same things? I know that tech had few podcasts for a few years because this is all I was seeing, and I intended this blog to be covering all kinds of things.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.