State of Security 2022 Report Reveals Increase in Cyberattacks While Security Talent Remains Scarce
Global Research Shows Nearly Two-Thirds of Organizations Have Seen an Uptick in Cyberattacks and Roughly Half Experienced a Breach
According to the report, 65% of respondents say they have seen an increase in attempted cyberattacks. In addition, many have been directly impacted by data breaches and costly ransomware attacks, which have left security teams exhausted:
- Nearly half (49%) of organizations say they have suffered a data breach over the past two years, an increase from 39% a year earlier.
- 79% of respondents say they’ve encountered ransomware attacks, and 35% admit that one or more of those attacks led them to lose access to data and systems.
- 59% of security teams say they had to devote significant time and resources to remediation, an increase from 42% a year ago.
54% of respondents report that their business-critical applications have suffered from unplanned outages related to cybersecurity incidents on at least a monthly basis, with a median of 12 outages per year.
The median time to recover from unplanned downtime tied to cybersecurity incidents is 14 hours. Respondents estimated the cost of this downtime averaged about
- The median time to recover from unplanned downtime tied to cybersecurity incidents is 14 hours. Respondents estimated the cost of this downtime averaged about
- 64% of security professionals have stated that it's challenging to keep up with new security requirements, up from 49% a year ago.
“This survey has revealed that organizations are deeply concerned about supply chain attacks, especially after the SolarWinds hacks of 2020 and the Log4Shell incident in late 2021,” said
As cybercriminals become more persistent and workloads increase, many organizations have been impacted by the Great Resignation and the additional security challenges of remote work. These factors have exacerbated the already ongoing talent shortage within the cybersecurity industry:
76% of respondents say their team members have been forced to take on responsibilities they are not ready for, and 70% say that the resulting increase in their workload has led them to consider looking for a new role.
- 85% of respondents say it has gotten harder to recruit and retain talent over the past 12 months.
53% of respondents say they can’t hire enough staff and 58% cite an inability to find talent with the right skills.
- 68% of respondents report that talent shortages directly led to the failure of one or more projects/initiatives.
- 73% of respondents say that workers have resigned, citing burnout.
Organizations from around the world face similar security challenges, but many struggle to secure proper investment into their cybersecurity programs and face cybersecurity skills shortages:
Canadareport that their organizations are increasing their investment in cybersecurity at a slower rate than their counterparts globally. While 37% of respondents say that their organization will increase investments significantly in the next 12-24 months, 52% of their peers in other countries say the same.
- Over half (53%) of German organizations reported that the struggle to recruit and retain security talent caused multiple project delays in the past 12 months, compared to 43% across other countries.
Cybersecurity skills shortages appear to be particularly challenging in
Singapore, with 44% of respondents reporting challenges related to both hiring and retention, versus 22% of the peers globally reporting this to be the case.
“Our latest State of Security report has revealed the challenges security professionals face, but there are steps we can take to alleviate these issues,” said
For more insights and recommendations from the State of Security 2022, please visit: www.splunk.com/en_us/campaigns/state-of-security.html
The global survey was conducted from mid-January through
Splunk, Splunk>, Data-to-Everything, D2E and Turn Data Into Doing are trademarks and registered trademarks of