Cybersecurity Budgets Favor Tech Over Talent: SANS Report

November 7, 2024 | Cybersecurity
By Ashwani Mishra, Editor-Technology, 63SATS

The SANS 2024 State of ICS/OT Cybersecurity Report reveals a critical oversight in budget allocation across the industrial cybersecurity sector.

While companies recognize that employees often pose the greatest risk, a majority continue to channel funds into technology rather than developing and recruiting skilled cybersecurity professionals.

This imbalance could hinder the industry’s ability to manage escalating threats in industrial and operational technology (ICS/OT) environments.

Key Insights and Industry Challenges

Budgets Favor Technology Investments

Despite acknowledging “people risks,” with 66% of respondents identifying employees and contractors as the biggest vulnerabilities, 52% of surveyed organizations still allocate the lion’s share of their budgets to technology upgrades rather than employee development.

This trend highlights a disconnect between security needs and financial priorities, potentially leaving industrial organizations underprepared to handle complex cyber threats.

Underinvestment in Workforce Development

Workforce gaps in ICS/OT cybersecurity remain a pressing issue, as the survey reports that 51% of respondents lack specialized certifications. However, only 25% of the budget is directed toward workforce training and recruitment, leaving organizations short on the talent required to manage increasingly sophisticated cyber risks.

Governance and Policy Limitations

The role of CISOs is expanding, with 39% of organizations now centralizing ICS/OT security policy-making at the executive level. Yet, without sufficient investment in skilled personnel, these policies may lack the workforce capability needed to enforce them effectively, particularly as ICS/OT environments evolve.

Balancing Technology with Talent

While advanced tools and technology solutions are essential, a skilled workforce is equally crucial for long-term cybersecurity resilience. Organizations are advised to seek a balance, focusing not only on implementing advanced technologies but also on developing in-house expertise through certifications and continuous learning.

The findings from the SANS 2024 report underscore an urgent need for companies to reassess their budget allocations, ensuring a fair split between technology investments and workforce development. By investing in both tech and talent, industrial organizations can create a cybersecurity culture that is resilient, adaptable, and capable of defending critical infrastructure against future cyber threats.