Cyber Professionals Are Stressed Out, Overworked, UnderpaidCandy Alexander of ISSA International Board on State of Cyber Professionals
Cybersecurity professionals are stressed out, overworked, underpaid and working on short-staffed teams, said Candy Alexander, president of the ISSA International Board. She advised organizations to look for the right indicators of a good cybersecurity culture.
"We're not looking at the right indicators of what a good security culture is, but in my opinion, a good security culture, you wouldn't necessarily worry about not getting enough pay, understaffed and all those things. So I think we really need to reevaluate what a good security culture is," Alexander said.
Alexander added that once an organization has sufficient staffing, cultural change will take place. Organizations should reassess the level of investment required for their security programs and change the way security teams talk with other parts of the business.
"We need to put it into the business terms and have a business conversation," she said.
In this video interview with Information Security Media Group at RSA Conference 2023, Alexander also discusses:
- Actions to take for career advancement;
- The state of the talent shortage;
- How ISSA can help industry professionals.
With over 30 years of experience in cybersecurity, Alexander's contributions include being twice elected ISSA International president and being the inaugural president and past board member of the ISSA Education and Research Foundation. She is CISO and cyber risk practice lead at NeuEon, assisting companies of all sizes in improving their cyber risk and security programs through effective business alignment.