The Information Systems Security Association (ISSA) and Omdia released Volume VIII of the Life and Times of Cybersecurity Professionals, an annual study of the cybersecurity workforce. As attackers leverage AI to scale attacks and organizations invest in AI-powered security tools, the professionals using them are burning out, being left out of decisions and thinking about leaving the field.
Eighty-three percent of organizations are currently using or planning to adopt AI for cybersecurity, but the data reveals a critical gap between technology investment and workforce reality:
- Top AI use cases include automating scanning and testing (50%), predictive risk analysis (48%) and threat detection (38%).
- Sixty-eight percent say the job has become harder over the past two years, even as AI adoption has accelerated.
- Twenty-five percent have increased AI spending without a defined strategy connecting it to their people or security program.
- Beyond AI, the study examines job satisfaction, the skills shortage, organizational culture and the evolving CISO role.
“Eight years of data point to the same conclusion,” said Jimmy Sanders, president, ISSA. “The profession is struggling not because talent is scarce, but because organizations are not investing enough in the people they already have. That is the leadership opportunity in front of us right now.”
The numbers behind that verdict are consistent across every edition of the study. Close to half of respondents have thought about leaving their role in the past 18 months, and among those, 57% have considered leaving cybersecurity entirely. 71% say technology decisions get made without the security team at the table. CISO appointments fell from 76% to 63% in a single year.
“AI will not close the cybersecurity skills gap on its own,” said Melinda Marks, practice director, cybersecurity, Omdia and the study’s lead researcher. “Organizations getting the most from their security programs need to invest in their people first. Training, inclusion and clear career paths are not soft benefits. They are what makes everything else work.”
Thirty-nine percent cite leadership commitment as the top driver of job satisfaction, above compensation and technology investment. Fifty-four percent say seeking an apprenticeship, internship or mentor is among the most valuable steps for anyone entering the field.
“What sustains people in this profession long-term is not any one technology or program,” said Dr. Shawn Murray, immediate past president, ISSA. “It is connection. Access to peers who understand the work, mentors who have navigated the same challenges, and a community where your development is taken seriously. That is what professional associations exist to provide, and it is something no AI tool replaces.”
#ask-sdm-ec a {
display: inline-flex;
align-items: center;
gap: 10px;
padding: 10px 20px;
font-size: 16px;
font-weight: 600;
color: #348089;
background-color: #fff;
text-decoration: none;
border-radius: 4px;
border: 2px solid #348089;
box-shadow: none;
transition: all 0.25s ease-in-out;
}
#ask-sdm-ec a:hover {
background-color: #348089 !important;
color: #fff !important;
}
#ask-sdm-ec a svg {
width: 18px;
height: 18px;
stroke: currentColor;
stroke-width: 1.8;
fill: none;
stroke-linecap: round;
stroke-linejoin: round;
flex-shrink: 0;
transition: inherit;
}
Looking for quick answers on security topics?
Try Ask SDM, our new smart AI search tool.
Ask SDM →