What’s the state of cybersecurity this year?
The cybersecurity threat landscape continues to evolve rapidly, and you’re on the frontline for your organization. How are others in your field faring? Do you have the same challenges? What exactly does the cybersecurity industry look like today? Gain access to ISACA’s State of Cybersecurity 2023 Report and other related resources below to discover answers to these questions. And, in honor of October being cybersecurity month, ISACA is offering a special 15% savings on select cybersecurity online courses.
ISACA’s study of 2,100+ cybersecurity professionals
According to the study, credentials and hands-on training are the top three things organizations look for when hiring for open cybersecurity positions:
95%
PREVIOUS HANDS-ON EXPERIENCE
87%
CREDENTIALS HELD
80%
COMPLETION OF HANDS-ON SECURITY TRAINING
Discover what cybersecurity professionals say about skills and staffing and find resources to help you understand the current conditions within the cybersecurity world, including:
- Hiring challenges, including vacancies and retention issues
- A deep dive into pipeline issues
- Threatened budgets for cybersecurity teams the global cyber threat landscape
- Cybersecurity assessment and maturity in organizations
Save on digital courses that expand your expertise
Make October your month to advance your cyber skillset. ISACA® is highlighting resources to help you further develop your cybersecurity expertise—including saving 15% on select digital courses—for Cybersecurity Awareness Month. Offer ends 31 October. Use promo code PRODCYBERMONTH23.
Additional State of Cybersecurity report resources
Insights directly from cybersecurity professionals
See what professionals surveyed for the 2023 State of Cybersecurity Report had to say in their own words.
Raef Meeuwisse, CISA, CISM
“Cybersecurity is an accelerating battleground where AI has begun to amplify both threats and defenses. Gone are the days when ‘good enough’ security could shield even the most robust enterprises. The survey shows that most organizations may still exude a degree of overconfidence which their staffing and funding may not live up to. The choice for organizations is clear: either identify and fortify your vulnerabilities against attack, or watch as adversaries exploit them, which can, in an increasing number of cases, leave your enterprise no second chances for remediation. The era of mastering the basics is closing; now is the time to be brilliant or be breached.”
Jason Lau, CGEIT, CRISC, CISA, CISM, CDPSE, CISSP, CIPP/E, CIPM, CIPT, CEH, HCISPP, FIP
“The alarming truth is that 62% believe that a majority of organizations under-report cyberattacks, which skew the reality. This could be attributed to concerns over brand reputation, potential legal consequences or even unawareness. This statistic underscores the pressing need for transparency and collaboration in the cybersecurity domain.”
Mary Carmichael, CRISC, CISA, CPA, Member of ISACA Emerging Trends Working Group
“In cybersecurity, overconfidence is a silent adversary. The ISACA study reveals a compelling discrepancy: 55 percent of respondents believe their board of directors prioritizes enterprise cybersecurity, and 75 percent are confident in the alignment of their cybersecurity strategy with enterprise objectives. Yet, beneath these assurances lies a stark reality—a significant number of boards are lacking essential cybersecurity expertise. As regulatory bodies move towards standardizing disclosures on cybersecurity risk management and data breach notifications, the unpreparedness of these boards becomes increasingly evident. True security lies not in self-assured declarations, but in the capability to recognize gaps and the drive to bridge them. Overconfidence is a liability, often obscuring the true risks at hand.”