The disclosure of the Log4j zero-day exploit in December 2021 had a serious impact on the cybersecurity industry. The flaw is found in one of the most commonly used pieces of software, thus, it could potentially impact billions of devices. If left unpatched, attackers could seize complete control of the device, which is cause for alarm. In fact, the Federal Trade Commission (FTC) threatened to use “its full legal authority to pursue companies that fail to take reasonable steps to protect consumer data from exposure as a result of Log4j, or similar known vulnerabilities in the future.” To better understand the implications of Log4j for cybersecurity professionals, (ISC)² conducted an online poll of 269 cybersecurity practitioners examining the Log4j vulnerability and the human impact

Cybersecurity is one of many industries lacking diverse perspectives and backgrounds, which are essential for combating the ever-evolving threat landscape. (ISC)² estimates that the Cybersecurity Workforce Gap as of 2021 stands at 2.72 million professionals globally, but women make up roughly 25% of the cybersecurity industry, compared to at least 40% of the global workforce. This imbalance and lack of diversity in the sector was highlighted in the recent report In Their Own Words: Women and People of Color Detail Experiences Working in Cybersecurity. This disparity is also recognized by the U.K.’s National Cyber Security Centre (NCSC), which recently released its 2021 NCSC Diversity Report. Showing that although the U.K. cybersecurity industry is making strides to close the diversity gap,

Morale among most cybersecurity professionals remains high despite the stressors brought on by the pandemic. 29% of respondents to the (ISC)² 2021 Cybersecurity Workforce Study reported personal morale as above average, with another 26% stating it was excellent. Overall team morale was also found to be high, with 51% of respondents rating it above average, followed by 20% selecting excellent. In the past two years, the majority of employers have implemented work-from-home policies, 94% in 2021. This rapid shift that began as a public health matter has created lasting change that has workers looking to say home permanently and businesses consolidating their real estate footprint. According to the Workforce Study, only 24% of companies plan to return to their pre-pandemic

A recent Forbes article pulled together a list of several cybersecurity stats that underpin the current state of the industry and threat landscape. The stats, which come from various private sector organizations, highlight the dire need for more cybersecurity professionals to keep up with adversarial threats. Some of the most alarming stats include: Cybercriminals can penetrate 93% of company networks (Positive Technologies) Businesses suffered 50% more cyberattack attempts per week in 2021 (CheckPoint Software) The threat of ransomware attacks, data breaches or significant IT outages worries companies even more than business and supply chain disruption, natural disasters or the COVID-19 pandemic (Allianz Risk Barometer) In 2021, 37% of all businesses and organizations were hit by ransomware (Sophos) The global cost of ransomware in 2021

The cybersecurity industry has a talent shortage and is seeking professionals to close the 2.72 million global workforce gap. Young people could be the answer to fulfilling the need organizations have to adequately defend their critical assets. Cybersecurity is a fitting choice for Gen Z and young Millennials interested in a progressive and rewarding field where the only consistency is evolution, advancing challenges and continuing education. Satisfaction and Compensation “Despite some of the prevailing narratives in the media about cybersecurity professionals feeling stressed, unappreciated and facing overwhelming pressure, our research continues to reveal a highly engaged and satisfied workforce.” (2021 (ISC)² Cybersecurity Workforce Study) 77% of Workforce Study respondents reported they are satisfied or extremely satisfied with their jobs, with