Research Shows Many New Cybersecurity Professionals are Doomed to Make Blunders

Research Shows Many New Cybersecurity Professionals are Doomed to Make Blunders

Unfortunately, cyberattacks will only continue in the weeks, months, and years to come, making it increasingly essential that businesses have access to cybersecurity expertise. Even more unfortunately, professionals with this level of expertise are becoming harder to find. Globally, we’re short almost four million people, and those we have are prone to make mistakes in their first few years. This comes from a report by Kaspersky, entitled “The Portrait of Modern Information Security Professional,” Let’s review what the cybersecurity developer found and what we can take away from these findings.

We’ll be focused on part one of this report, “Cybersecurity Education Lags as Professionals Struggle On,” which is split into two chapters:

  1. “Educational background of current cybersecurity experts”
  2. “Initial professional struggles”

We’ll summarize each.

How Well-Prepared Is the Average Cybersecurity Professional?

The first chapter of Kaspersky’s report outlines this precise question, and as you would expect based on the section’s title, the answer is a resounding “not well.”

Kaspersky’s research revealed that just over half of information security professionals had no postgraduate degree, and it didn’t stop there.

Half of these professionals claimed that the theoretical training they received in college didn’t help them in their current positions, and even fewer had hands-on experience during their education. It also doesn’t help that many universities and colleges actively struggle to keep their curriculums up to date due to how quickly the industry changes and because there simply aren’t enough instructors with the requisite up-to-date knowledge.

Once These Professionals Enter the Working World, Things Remain Challenging

Kaspersky’s respondents also revealed a few obstacles that new entrants into the profession commonly face… many of which suggest some ties to the aforementioned ill-preparedness many of these new professionals present.

One interesting tendency this research found was that—despite the cybersecurity personnel shortage we referenced, very few interviewees were hired after their first interview. Far more were denied once, twice, or three times in their job search. It was even more common for a candidate to be interviewed four times unsuccessfully than to land their first interview.

Once they were hired, almost half—46%—shared that over a year passed before they felt confident in their role, most taking between one to two.

We also have to acknowledge the human element to all this, and the fact that everyone—even freshly trained security professionals—can make mistakes. Kaspersky’s research showed that a majority of their respondents admitted to making mistakes during their first years on the job.

The most common of these mistakes?

Failure to upstate software at 43% of responses, using weak or guessable passwords at 42% of responses, and negligence in taking timely backup at 40% of responses.

Mistakes Like These are Not to Be Underestimated

However, it is also important not to miss the forest for the trees. Cybersecurity must be prioritized in each and every business. If a business has the resources to commit to a devoted cybersecurity professional on staff, there are much worse investments to make.

However, we understand that many of the small and even medium-sized businesses of New Hampshire can’t justify that kind of investment. We provide a great alternative through our managed IT services, part of which involves helping ensure your business is secure. Don’t get us wrong… everyone makes mistakes. What helps us is the fact that we have an entire team here to help catch them, equipped with the tools to do so.

Whether or not you have team members devoted to securing your business, a little more assistance never hurts. Find out more about how we can help by calling (603) 889-0800.

White Mountain IT

Related Posts

Knowing, and Planning For, Your Organization’s Compliance Burden

Despite what detractors say, regulations are in place for good reason. They typically protect individuals from organizational malfeasance. Many of these regulations are actual laws passed by a governing body and cover the entire spectrum of the issue, not just the data involved. The ones that have data protection regulations written into them mostly deal with the handling and protection of sensiti...

How to Avoid Becoming the Next Data Security Cautionary Tale

Data security isn’t a matter to be taken lightly, as too many businesses have found out the hard way. Unfortunately, there are far too many simple ways to correct common security issues - enough that it’s foolish not to do so. We’ll review a few ways to fix security issues, after discussing one of, if not the, most egregious security failings in modern history. The Equifax Problem Sometime bet...

How Does CAPTCHA Work?

We’ve all had to confirm we’re not a computer when attempting to log into an account. This is the core purpose of what once was called CAPTCHA… the Completely Automated Public Turing test to tell Computers and Humans Apart. However, it seems surprising that computers don’t easily overcome these simple-seeming tests. Let’s dig into why these simple tests actually are effective at differentiating b...

Tip of the Week: Three Steps to Policing Your IT Policies

Small businesses are presented with the challenging prospect of monitoring and policing various IT-related policies that you might have for your network infrastructure and workplace technology use. The difficulty of this notion does little to lessen its importance, however. You need to take action to protect your assets, data, and reputation from the countless threats out there, and ensuring that ...

Sound Familiar?

Here are some of the most common complaints we hear from businesses that aren’t satisfied with their IT vendor and want to switch to White Mountain.

There is a Better Way!

Give White Mountain IT a Call Today

BOOK A CALL

Nationwide Remote IT Services,

Without a Long Term Contract.

We provide services and support to businesses throughout the US. If we do not have an on-site resource in your area, we can manage a local vendor to provide on-site assistance if and when needed.

All our Managed Services are carried out by our dedicated team of full-time employees. These professionals have successfully cleared multiple security and background checks, ensuring the highest level of service and reliability for your business. 

Need an Onsite Visit?

We've Got You Covered!

Manchester N.H. Office:

121 Riverfront Drive
Manchester NH 03102

Nashua N.H. Office:

33 Main Street
Suite 302
Nashua NH 03064

Client Help Desk        603-889-2210

New Client Inquiries   603-889-0800

OPEN POSITIONS

Client Help Desk

603-889-2210

New Client Inquiries
   603-889-0800

© 2025 All Rights Reserved. Areas We Serve copy_right_image

Protected by Copyscape Plagiarism Checker – Do not copy content from this site.