Educause Survey Reveals Growing Dissatisfaction Among Higher Education Cybersecurity Professionals

Nonprofit higher education association Educause recently conducted a study of 350 cybersecurity and privacy professionals in July 2023. The study report outlines concerns of those professionals and shows a growing dissatisfaction with training, work conditions, and time constraints.

The report is the first in a series examining specific workforce areas in higher education to determine relevant findings and make recommendations. This report examines five key areas: respondent composition; department structure, size, and reporting lines; staffing and budgets; work role experiences; and competencies and professional development.

Key findings from the report note that:

  • Staffing issues have affected cybersecurity and privacy negatively at respondents' institutions, despite there being adequate FTE budgeting for such jobs in many cases.
  • Professionals want remote and hybrid options for work, and 68% said they do have them, indicating a favorable response by their institutions.
  • Poor job satisfaction prompted 56% to say they will look for other jobs inside higher education, and 55% outside of it, within the next year.
  • Professionals have identified problems and conflicts of interest in IT and cybersecurity that they feel should be reported to administrators outside IT.
  • Professionals feel their current workload is excessive because of increased demands in "compliance and regulations, monitoring and detection, and incident response and threat hunting."
  • There has been reduced time demand for offensive and specialized offensive operations and threat intel and forensics in the last year.
  • Respondents feel technical skill and AI competency is of great importance, but time and commitment are needed from employers for training and professional development.
  • Cybersecurity and privacy needs are becoming more intertwined and expanding beyond current IT services.

Conclusions and recommendations are for employers to recognize that cybersecurity and privacy threats are growing and need more staff and training to handle them. To this end, they should focus on recruitment, training, retention, workload, support, and professional development.

"More than half of the cybersecurity and privacy professionals who completed our workforce survey said that they are likely to apply for other positions in the next 12 months," said Nicole Muscanell, the report's author. "And despite there being more competitive salaries for industry jobs, respondents said they are equally likely to apply for positions within (56%) and outside of higher ed (55%)."

Learn more and read the report on the survey page.

About the Author

Kate Lucariello is a former newspaper editor, EAST Lab high school teacher and college English teacher.

Featured

  • student reading a book with a brain, a protective hand, a computer monitor showing education icons, gears, and leaves

    4 Steps to Responsible AI Implementation

    Researchers at the University of Kansas Center for Innovation, Design & Digital Learning (CIDDL) have published a new framework for the responsible implementation of artificial intelligence at all levels of education.

  • glowing digital brain interacts with an open book, with stacks of books beside it

    Federal Court Rules AI Training with Copyrighted Books Fair Use

    A federal judge ruled this week that artificial intelligence company Anthropic did not violate copyright law when it used copyrighted books to train its Claude chatbot without author consent, but ordered the company to face trial on allegations it used pirated versions of the books.

  • server racks, a human head with a microchip, data pipes, cloud storage, and analytical symbols

    OpenAI, Oracle Expand AI Infrastructure Partnership

    OpenAI and Oracle have announced they will develop an additional 4.5 gigawatts of data center capacity, expanding their artificial intelligence infrastructure partnership as part of the Stargate Project, a joint venture among OpenAI, Oracle, and Japan's SoftBank Group that aims to deploy 10 gigawatts of computing capacity over four years.

  • laptop displaying a phishing email icon inside a browser window on the screen

    Phishing Campaign Targets ED Grant Portal

    Threat researchers at cybersecurity company BforeAI have identified a phishing campaign spoofing the U.S. Department of Education's G5 grant management portal.