75% Of Orgs Lack Skilled Cybersecurity Experts

In a Tripwire study, 25% of respondents were confident their businesses have enough skilled cybersecurity experts to effectively detect and respond to serious breaches.

October 21, 2016

3 Min Read


PORTLAND, Ore. — October 20, 2016 — Tripwire, Inc., a leading global provider of security and compliance solutions for enterprises and industrial organizations, today announced the results of an extensive Tripwire study conducted by Dimensional Research. The study was carried out in August and evaluated key challenges that organizations must address in order to optimize their cyber security and compliance programs. Study respondents included over 500 IT security professionals.

According to Tripwire’s study, only twenty-five percent of the respondents were confident their organizations have the number of skilled cyber security experts needed to effectively detect and respond to a serious cyber security breach. In addition, sixty-six percent of the respondents said their organization faced increased security risks due to the lack of skilled cyber security experts.

Despite the high demand for skilled cyber security professionals, businesses have encountered a shortage in the workforce. A 2015 study by Frost & Sullivan, conducted on behalf of (ISC)2, estimates that by 2020 there will be a shortfall of 1.5 million trained cyber security professionals.

"Cyber security is a growth industry for employees, and supply is falling far short of demand," said Tim Erlin, director of IT security and risk strategy for Tripwire. "Smart organizations need to establish effective programs for educating and developing employee skills around information protection. Having the right tools is only part of the solution. A lack of cyber security skills not only degrades an organization’s ability to respond to incidents, it also inhibits organizations from developing and deploying effective prevention."

Additional findings from the survey included:

  • Seventy-two percent of the respondents had challenges hiring skilled cyber security experts.

  • Half of the respondents (fifty percent) said their organizations do not have an effective program to recruit, train and retain skilled cyber security experts.

  • Sixty-nine percent of the respondents have attempted to use technology solutions to fill a gap left by a lack of skilled cyber security experts.

Erlin continued: "While tools can’t replace people, effective automation can give skilled employees more time to spend on the tough problems. Organizations should examine where their cyber security teams are investing manual effort into tasks that could be automated. Reducing and removing tedious, manual work can help improve employee retention as well."

Additional Resources:

About Tripwire

Tripwire is a leading provider of security, compliance and IT operations solutions for enterprises, industrial organizations, service providers and government agencies. Tripwire solutions are based on high-fidelity asset visibility and deep endpoint intelligence combined with business context; together these solutions integrate and automate security and IT operations. Tripwire’s portfolio of enterprise-class solutions includes configuration and policy management, file integrity monitoring, vulnerability management, log management, and reporting and analytics. Learn more at tripwire.com, get security news, trends and insights at tripwire.com/blog or follow us on Twitter @TripwireInc.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights