Gartner Predicts 1 in 4 Cybersecurity Leaders Will Leave the Field by 2025

A new forecast from research firm Gartner estimates that nearly half of all cybersecurity leaders will change jobs by 2025. And 25% will move to non-security roles due to multiple work-related stressors.

"Cybersecurity professionals are facing unsustainable levels of stress," explained Deepti Gopal, director analyst at Gartner, in a statement. "CISOs are on the defense, with the only possible outcomes that they don't get hacked or they do. The psychological impact of this directly affects decision quality and the performance of cybersecurity leaders and their teams."

Gartner points to organizational culture and under-prioritization of security risk management as culprits behind the predicted cybersecurity talent churn. "Gartner research shows that compliance-centric cybersecurity programs, low executive support and subpar industry-level maturity are all indicators of an organization that does not view security risk management as critical to business success," the research firm said. "Organizations of this type are likely to experience higher attrition as talent leaves for roles where their impact is felt and valued."

"Burnout and voluntary attrition are outcomes of poor organizational culture," added Gopal. "While eliminating stress is an unrealistic goal, people can manage incredibly challenging and stressful jobs in cultures where they're supported."

Gartner also noted:

  • By 2025, half of major data security incidents will be the result of lack of talent or human failure;
  • 69% of employees have bypassed their organization's cybersecurity guidance in the past year, according to a recent Gartner survey;
  • 74% of employees in the same survey said they would be willing to bypass cybersecurity guidance if it helped them or their team achieve a business objective; and
  • Also by 2025, half of medium and large enterprises will adopt an insider risk management program, up from 10% now.

The full forecast is available to Gartner clients at gartner.com.

About the Author

David Nagel is the former editorial director of 1105 Media's Education Group and editor-in-chief of THE Journal, STEAM Universe, and Spaces4Learning. A 30-year publishing veteran, Nagel has led or contributed to dozens of technology, art, marketing, media, and business publications.

He can be reached at [email protected]. You can also connect with him on LinkedIn at https://www.linkedin.com/in/davidrnagel/ .


Featured

  • central cloud platform connected to various AI icons—including a brain, robot, and network nodes

    Linux Foundation to Host Protocol for AI Agent Interoperability

    The Linux Foundation has announced it will host the Agent2Agent (A2A) protocol project, an open standard originally developed by Google to support secure communication and interoperability among AI agents.

  • laptop displaying a digital bookshelf of textbooks on its screen

    Collaboration Brings OpenStax Course Materials to Microsoft Learning Zone

    Open education resources provider OpenStax has partnered with Microsoft to integrate its digital library of 80 openly licensed titles into Microsoft Learning Zone, an on-device AI tool for generating interactive lessons and learning activities.

  • cybersecurity analyst in a modern operations center monitors multiple digital screens showing padlock icons, graphs, and a global map with security markers

    Louisiana State University Doubles Down on Larger Student-Run SOC

    In an effort to provide students with increased access to real-world cybersecurity experience, Louisiana State University has expanded its relationship with cybersecurity solutions provider TekStream to launch TigerSOC, a new student-run security operations center.

  • abstract pattern of cybersecurity, ai and cloud imagery

    OpenAI Report Identifies Malicious Use of AI in Cloud-Based Cyber Threats

    A report from OpenAI identifies the misuse of artificial intelligence in cybercrime, social engineering, and influence operations, particularly those targeting or operating through cloud infrastructure. In "Disrupting Malicious Uses of AI: June 2025," the company outlines how threat actors are weaponizing large language models for malicious ends — and how OpenAI is pushing back.