A report from Cynet found that chief information security officers (CISOs) were experiencing high levels of work-related stress. The survey was comprised of results from CISOs at small to midsize businesses with security teams of five employees or less to better understand their levels of work-related stress and how their mental health is impacting their work life and personal life. The results found 94% of CISOs report being stressed at work, with 65% admitting work-related stress issues are compromising their ability to protect their organization. Among the CISOs surveyed, 100% said they needed additional resources to adequately cope with current IT security challenges.
The lack of bandwidth and resources is not only impacting CISOs, but their teams as well. According to the report, 74% say they are losing team members because of work-related stress issues, with nearly half (47%) of these CISOs having more than one team member exit their role over the last 12 months. Relentless stress levels are also affecting recruitment efforts with 83% of CISOs admitting they have had to compromise on the staff they hire to fill gaps left by employees who have quit their job. More than a third of the CISOs surveyed said they are either actively looking for or considering a new role.
Seventy-seven percent of CISOs believe that their limited bandwidth and lack of resources has led to important security initiatives falling to the wayside, with 79% of these CISOs claiming they have received complaints from board members, colleagues or employees that security tasks are not being handled effectively.
Ninety-three percent of CISOs believe they are spending too much time on tactical tasks instead of performing strategic, high-value work and management responsibilities. Among the CISOs who believe they are overly invested in tactical tasks, more than a quarter report spending their workday almost exclusively on tactical/operational tasks. Eighty-four percent of CISOs say they have had to cancel a vacation due to an urgent work matter and 64% report they’ve missed a private event because of work fatigue. More than 90% consistently work 40+ hours per week with no break.
The major takeaway from the survey is that CISOs and their teams are suffering from overwhelming amounts of stress and it's affecting everything from the security of their company to their day-to-day work routines and, ultimately, their life outside of work. Seventy-seven percent of CISOs said that work-related stress was directly impacting their physical health, mental health and sleep patterns.
To see the full findings, download the report here.