The annual Voice of SecOps Report, presented by Deep Instinct with a focus on increased and unsustainable stress levels across the industry for 1,000 senior cybersecurity professionals, revealed in its findings that 45% of respondents are ready to quit the industry due to mounting stress with the role.
The stress has been built upon unrelenting threats from ransomware and the expectation of the roles to be on call and available on a constant cycle.
The Great Resignation
Defending against ever-advancing threats on a daily to hourly basis is providing more and more problems for the 45% of respondents who have had a measurable stress increase in just 12 months.
The biggest amount of potential resigning experts operates within the critical infrastructure, with the increased stress levels leading them to consider leaving the industry altogether rather than shifting focus to another area of cybersecurity with a new employer. Many admit to wanting to quit at least two times within the last year, whilst others know at least one person who has followed through with leaving the industry altogether.
The Stress Cause
The levels of stress are felt on all levels – from the SOC teams and others on the frontlines to those in the C-Suite making the difficult calls on their available resources.
Ransomware is the biggest cause of the stress bubble, with nearly 40% admitting to paying up to receive the encryption key to avoid downtime or bad publicity. In the majority of cases, paying the ransom did not guarantee a resolution following the attack. Those paying the ransom reported that their data was still exposed by the hackers, they could not restore their data or found further issues concerning the attack.
In response to this, 73% have gone on record to state they will never pay a ransom in any future instances. Those claiming they would pay a future ransom say that future fears would be not having all of their data restored, having the data made public knowledge by the criminals or a back door being left for the criminals to return.
Artificial-intelligence (AI)- enabled tools are becoming highly effective in combatting these sophisticated attacks from ransomware, being recognised for their potential to reduce critical productivity challenges like false positives – allowing teams to focus more time and resources on critical cyber defence avenues.
Respondents agreed that greater automation through artificial intelligence and machine learning improves their security operations, with many choosing to depend on AI rather than a human element to hunt down threats. Of those respondents polled, only 6% claimed to not trust AI as a solution.