Almost 50 percent of the 1,800 information security professionals surveyed in the U.S. said they believe their organization’s security posture over the last two years lack improvement and cited inadequate funding and scarcity of qualified professionals as among the reasons, ISC said Thursday.
Dan Waddell, director of government affairs for National Capital Region at ISC, said the data suggests “a step back” in the federal government’s initiatives to further its security readiness and overall security posture.
The study shows that 58 percent of respondents anticipate little cybersecurity funding from legislators and that only 15 percent of respondent organizations besides the federal government have so far enforced the National Institute of Standards and Technology cybersecurity framework.
More than 50 percent of respondents also observed longer times in how their organization responds to threats, with application vulnerabilities and malware being their top concern.
“On a positive note, we are starting to see an uptick in federal personnel salaries, with a 4 percent jump over salaries reported in 2013,” Waddell said.
ISC worked with Booz Allen Hamilton, Cyber 360 Solutions and NRI Secure Technologies for the seventh global information security workforce study.
Frost and Sullivan conducted the Web-based survey between October and December in 2014 to extract insights into information security trends and opportunities.