Skip to main content
close search
site logo
Dive Brief

Incident responders report alarming rates of mental strain

Ransomware, long work days and responsibilities stretched across multiple overlapping incidents all contribute to stress, according to an IBM Security study.

Published Oct. 7, 2022
Matt Kapko's headshot
Senior Reporter
Shot of a young businesswoman looking stressed while using a laptop during a late night at work.
Shot of a young businesswoman looking stressed while using a laptop during a late night at work. Layla Bird via Getty Images
This audio is auto-generated. Please let us know if you have feedback.

Dive Brief:

  • Two-thirds of cybersecurity incident responders have experienced stress or anxiety in their daily lives due to their profession, according to IBM Security’s Incident Responder Study released Monday. More than 4 in 10 respondents reported extreme or considerable mental strain after responding to a major cybersecurity incident.
  • Nearly two-thirds said they have sought mental health assistance as a result of responding to cybersecurity incidents. But the majority of responders, more than 4 in 5, reported they have adequate access to these support services.
  • Ransomware exacerbates the stress and psychological demands of cybersecurity incident response, according to the survey respondents. More than 4 in 5 attributed additional stress to ransomware.

Dive Insight:

Cybersecurity incident response is a high-stress, high-demand job that has a negative effect on mental health and wellbeing.

Despite those impacts, incident responders overwhelmingly cite a sense of duty and opportunity to protect organizations as the leading factor that attracted them to the profession, according to IBM Security.

Stressors in the field are abundant with ransomware, long work days and responsibilities spread across multiple overlapping incidents reported as the most common. 

More than two-thirds said it’s very or somewhat common for them to be assigned to at least two incidents that overlap. More than half said they work 8 to 12 hours per day and more than one-third of responders reported working at least 13 hours a day.

Incident responders also reported bouts with insomnia and burnout at rates of 30%, and 29% said their work has had an impact on their social life and personal relationships.

Many of these issues are common throughout the cybersecurity landscape and can be long-lasting.

“There's just certain foundational, fundamental attack mechanisms that are used again, and again and again,” Ed Skoudis, president of SANS Technology Institute, said in a previous interview.

“That can lead to burnout and frustration when you start this industry, bright eyed and bushy tailed, and then you realize you're 10 years in and it's just as vulnerable or more vulnerable than before,” Skoudis said.

IBM Security, for the report, commissioned Morning Consult to survey more than 1,100 cybersecurity incident responders across 10 countries in July.

Filed Under: Leadership & Careers

Editors' picks

Company Announcements

View all | Post a press release
Only Cynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK Eva…
From Cynet Security
December 11, 2024
Chemonics International Data Breach Investigation
From Migliaccio & Rathod LLP
December 04, 2024
Rumpke Data Breach Investigation
From Migliaccio and Rathod
December 11, 2024
Migliaccio and Rathod Investigates Byte Federal Data Breach
From Migliaccio and Rathod
December 12, 2024
Editors' picks
Latest in Leadership & Careers
Industry Dive is an Informa TechTarget business.
© 2024 TechTarget, Inc. or its subsidiaries. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell
This website is owned and operated by Informa TechTarget, part of a global network that informs, influences and connects the world's technology buyers and sellers. All copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. TechTarget, Inc.'s registered office is 275 Grove St. Newton, MA 02466.