India ranks second only to the US in most security threats on cloud, followed by Australia, Cannada and Brazil (according to McCafe Enterprise Advanced Threat Research Report). But people don’t seem to take cybersecurity seriously in India, at least going by ISACA’s new survey report, State of Cybersecurity 2022: Global Update on Workforce Efforts, Resources and Cyber Operations released recently.
This year’s survey results in India depict that 60% of the organisations have unfilled cybersecurity positions and that 42% report their organisation’s cybersecurity team is understaffed. Even more concerning is that 59% believe that less than half of their applicants are well qualified for the position they are applying.
As in past years, filling cybersecurity roles and retaining talent continues to be a challenge for many enterprises. Sixty-three percent of global respondents indicate they have unfilled cybersecurity positions and India reflects the same trend with 60% unfilled positions. Sixty-two percent of India-based respondents say it takes three to six months for their organisations to find qualified cybersecurity candidates for open positions, compared to 47% globally. For respondents in India, the top factors hiring managers use to determine whether a candidate is qualified are prior hands-on cybersecurity experience (77%), credentials (45%) and hands-on training (38%). Two in three (65%) respondents report difficulties retaining qualified cybersecurity professionals, a 14 percentage -point increase from 2021. The top reasons that India respondents believe cybersecurity professionals are leaving their jobs include: Poor financial incentives in terms of salary or bonus (51%); Limited promotion and development opportunities (50%); Recruited by other companies (47%); High work stress levels (38%); Lack of management support (38%).
