SMBs are being hit hardest by cybersecurity skills gap

Smaller businesses are disproportionately impacted by the skills shortage

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Cybersecurity is an unavoidable investment for any modern business, but a skills shortage is making it increasingly difficult for small businesses to recruit and retain qualified professionals.

New research from Sophos claims the issue disproportionately affects small to medium businesses, with organizations employing fewer than 500 employees ranking it as their number two cybersecurity concern, whereas it ranks seventh with larger firms.

The shortage manifests as both a lack of expertise and a lack of capacity. The survey revealed that 96% of SMBs find at least one aspect of investigating suspicious alerts challenging, and that 74% ofransomwareattacks against them are successful inencrypting data.

Burnout and fatigue

Smaller companies don’t have the capacity for vigilant cybersecurity, and 33% of the time, SMBs have no one monitoring, investigating, or responding to alerts - meaning many are vulnerable to attacks.

More and more cybersecurity professionals are experiencing significant increase in burnout, with 85% of organisations saying IT professionals have struggled in the last 12 months.

A worryingreport earlier in 2024 revealednearly three-quarters (74%) have taken time off for work-related mental health concerns. With the average ransomware attack costing a staggering $3 million in recovery, it’s no wonder cybersecurity professionals are feeling the pressure.

Working conditions, high workloads, and unreasonable expectations are all contributing to a workforce of over exerted IT professionals, who clearly aren’t being given the right tools to carry out their responsibilities, whether that be training or resources.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

As our world becomes increasingly digital, and companies hold more and more sensitive data on their customers, cybersecurity is more crucial than ever. Although it might feel like data breaches are just a part of life now, there is still immense pressure on IT workers to protect their businesses.

More from TechRadar Pro

Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.

New fanless cooling technology enhances energy efficiency for AI workloads by achieving a 90% reduction in cooling power consumption

Samsung plans record-breaking 400-layer NAND chip that could be key to breaking 200TB barrier for ultra large capacity AI hyperscaler SSDs

NYT Strands today — hints, answers and spangram for Sunday, November 10 (game #252)