The digital landscape is more volatile than ever, with nearly 20% of organizations reporting a major security attack in the past two years. From sophisticated criminal activity to rapidly evolving AI-enabled threats like Anthropic’s Mythos, the battle against cyber adversaries is relentless. Yet, the dedicated cybersecurity professionals safeguarding our enterprises are feeling increasingly undervalued and, frankly, fed up.
This stark reality emerges from the latest Harvey Nash Global Tech Talent & Salary Report, which surveyed over 3,646 technology professionals worldwide. Despite the surging demand for their expertise, security specialists are the least likely among tech roles to have received a pay increase recently. This significant mismatch between effort and reward is driving widespread dissatisfaction.
The Unseen Battle: Why Cyber Pros Feel Undervalued
The report reveals a concerning trend: only 29% of cyber professionals received additional compensation for their crucial work over the last year. This pales in comparison to other tech specialisms, where at least half of professionals saw a pay bump in 2025—think DevOps (56%), product management (51%), and business analysis (50%). The discrepancy is glaring, especially given the high-stakes nature of cybersecurity.
Ankur Anand, group CIO at Nash Squared, points to a fundamental issue: executive complacency. “The research clearly tells us that there’s a big mismatch between the demand and the reward in cyber,” Anand states. He explains that many boards assume security is “fine” simply because no major incident has occurred, overlooking the immense, often invisible, work of prevention.
This lack of recognition is taking a toll. Cybersecurity professionals are the third-most unhappy IT professionals globally (23%), just behind quality assurance/testing (24%) and infrastructure/support (25%). When success means nothing happens, the contributions of security teams often go unnoticed and unrewarded, leading to a profound sense of disillusionment.
Unsurprisingly, this dissatisfaction is translating into a desire for change. Almost half (49%) of cybersecurity professionals are actively looking to move jobs in the next 12 months, a figure significantly higher than the global average of 39% across all technology roles. This brain drain could leave organizations even more vulnerable to future attacks.
The AI Tsunami: Increased Pressure and Evolving Threats
As if current threats weren’t enough, the rise of artificial intelligence is introducing a whole new layer of complexity and pressure for security teams. Anand notes that the threat environment is evolving faster than most organizations can structurally adapt, creating an immense burden on those tasked with defense. He regularly encounters digital leaders who, despite heavy security investments, still struggle to cope.
The implications of advanced AI models are particularly daunting. Anand highlights the justifiable concerns surrounding models like Anthropic’s Mythos, which possess the potential to uncover “sleeping vulnerabilities” within systems. While responsible organizations like Anthropic work to address these, the worry remains that non-responsible threat actors could develop similar, dangerous tools.
The speed and sophistication of these new AI-driven threats mean that the working pressure for cybersecurity professionals is only going one way: upwards. “When I review the threat vectors with my head of security, it boggles my mind about the number of vulnerabilities that outsiders are trying to compromise,” Anand reveals. This constant, high-stakes battle contributes significantly to stress and burnout.
Beyond the technical challenges, the combination of a lack of recognition, immense pressure, legacy technology stacks, and distributed workforces chips away at motivation. As cyber concerns continue to mount, and companies falter in rewarding and retaining their talented staff, the enterprise faces a critical tipping point. Failure to address these issues could mean the organization is next in the firing line.
A Glimmer of Hope: AI as an Ally and Career Growth
Despite the intensifying pressures, there’s a silver lining: cybersecurity professionals aren’t letting AI intimidate them out of a job. In fact, they are among the least likely IT workers to feel threatened by AI taking their roles (48%), trailing only firmware/hardware engineers (55%) and technology leaders (58%). This indicates a pragmatic understanding that AI, while creating new risks, also generates new opportunities.
Anand emphasizes this perspective, stating, “AI is not removing the need for security; it is increasing it, and this is where a cyber professional adds value.” Instead of fearing AI, security specialists are uniquely positioned to define “what good looks like” in an AI-powered world, guiding organizations to operate within regulatory and data protection guardrails.
For those looking to advance their careers and navigate the competitive labor market, honing AI capabilities is crucial. However, it’s not just about technical depth. The most successful cyber professionals today also develop strong skills in strategy and communication, effectively blending technical knowledge with business context.
They can explain complex security issues without jargon or drama, focusing instead on the practical business impact and how the firm can effectively manage risks. These in-demand professionals understand how specialist tools, including AI, can be leveraged to reduce threats rather than merely adding to them. Ultimately, they champion cybersecurity as a strategic imperative, integral to the overall business vision and future readiness.
Source: ZDNet – AI
