Stress in the cybersecurity profession: a systematic review of related literature and opportunities for future research

Singh, Tripti; Johnston, Allen C.; D’Arcy, John; Harms, Peter D.

doi:10.1108/ocj-06-2022-0012

Cited by 6 publications

(5 citation statements)

References 107 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Working in the field of cyber security has been compared to working in a warlike environment (Brody, 2015;Singh et al, 2023).…”

Section: General Stressors In the Cybersecurity Professionmentioning

confidence: 99%

“…Recent studies have indicated that work-related stress is high in the cybersecurity profession (Nobles, 2022;Singh et al, 2023). According to a 2021 CIISec State of Profession report, over half of cybersecurity professionals report having stress-related sleeping issues (Wilson, 2022).…”

Section: General Stressors In the Cybersecurity Professionmentioning

confidence: 99%

“…Even without the hostilities of war, work-related stress can be high in cybersecurity professions (Nobles, 2022;Singh et al, 2023). When this is combined with the additional concerns of personal health and safety, atypical working conditions, high stakes in operations and possible exposure to traumatic events, they will endure considerable strain in their tasks.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Reintegration of cyber veterans: challenges and strategies for post-war transition

Virtanen,

Lassfolk,

Davydiuk

et al. 2024

Front. Psychol.

View full text Add to dashboard Cite

Battles in the cyber domain often lack visibility compared to the physical domain, which can lead to insufficient appreciation of its actors’ achievements by the general public and society. Nonetheless, it has become a crucial area of modern warfare in which cyber professionals defend the nation’s critical infrastructure, support other military operations and achieve military objectives that could not be attained in other domains. Although cyber combatants might not have as high a risk of injury or death as those on the front lines, they still can face traumatic events and suffer from the same types of issues after the war as any other veteran. Earlier studies on war veterans have shown they have elevated risks of mental health issues, substance use, social problems and financial difficulties which might push some individuals towards a path of crime. The cyber domain is also not limited by time or place, which has given rise to cyber volunteerism in which skilled individuals around the globe decide to assist their own country or friendly nations. This publication aims to identify the challenges cyber veterans might face when transitioning back to civilian life and develop appropriate strategies to facilitate their reintegration. It also raises the awareness of the hundreds of thousands of volunteers who can develop similar problems after the war. Without proper awareness, support and dialogue, some of these individuals can also drift towards harmful social implications such as cybercrime.

show abstract

“…Working in the field of cyber security has been compared to working in a warlike environment (Brody, 2015;Singh et al, 2023).…”

Section: General Stressors In the Cybersecurity Professionmentioning

confidence: 99%

Section: General Stressors In the Cybersecurity Professionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Reintegration of cyber veterans: challenges and strategies for post-war transition

Virtanen,

Lassfolk,

Davydiuk

et al. 2024

Front. Psychol.

View full text Add to dashboard Cite

show abstract

“…Working in the field of cybersecurity has been compared to working in a warlike environment (Brody, 2015;Singh, et al, 2023). Cyberspace does not follow geography and threat actors can project their attacks easily to anywhere on the globe making organisations defences endlessly contested.…”

Section: Introductionmentioning

confidence: 99%

“…Cybersecurity professionals are providing critical service to ensure business continuity of organisations and government services in a constantly changing adversarial landscape (Paul & Dykstra, 2017). Recent studies have indicated that work-related stress is high in the cybersecurity profession (Nobles, 2022;Singh, et al, 2023). The VMware Global Incident Response Threat Report from 2022 demonstrates that 51% of cybersecurity professionals self-report having symptoms related to burnout and of that group, 65% have considered leaving the cybersecurity profession altogether (VMware, 2022).…”

Section: Introductionmentioning

confidence: 99%

Psychological Effects of Continuity Threatening Cyber Incidents

Virtanen

2024

eccws

View full text Add to dashboard Cite

Working in the field of cybersecurity has been compared to working in a warlike environment. Understanding what types of psychological strain cyber attacks cause to the defending organisations’ workforce can aid in developing methods and processes for mitigating those stressors. This paper discusses the first-hand psychological effects of experiencing an operational continuity threatening cyber incident caused by a real threat actor. The results are based on 19 interviews from IR professionals and IT security practitioners to decision makers, CISO’s and other top executives. These individuals were working in multi-national corporations, hospitals, central government, financial sector, local government or educational institutions at the time of the incident. The interviews followed critical incident paradigm to focus on significant events during the cyber incidents, while also being semi-structured to compensate for the diversity of the incidents. Most of the interviewees raise up feelings of disbelief and despair as their first emotional response to the realization of being hit by ransomware, data theft or another severe cyber incident that could threaten operational or business continuity. Feelings of guilt and self-doubt were present, especially in those considered to be responsible for securing the network. However, at the same time, feelings of purpose and self-efficacy were also reported by some. Having scalable resources available in the time of need, with well-defined roles and responsibilities for the core incident response teams and protecting them from unnecessary inquiries seemed to alleviate the stressors and anxiety of the Incident Response (IR) team during the event. Good leadership and internal communication were seen as important to maintain the necessary situational awareness and focus during the active incident mitigation and resolve phase. Long-term negative effects of the cyber incident were increased cynicism, fear of the situation recurring, and thoughts of changing career. These negative outcomes were mitigated by increased trust in colleagues, processes and systems with experience of self-efficacy. This paper discusses what types of mental strain cyber incidents introduce to cybersecurity professionals and top executives. It deepens understanding on what factors need to be considered in developing and enhancing the overall resilience of organisations against cyber attacks.

show abstract

Predicting Ethical Orientation Based on Personality for Tailored Cyberethics Training

Bajwa,

Richards,

Formosa

2024

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Stress in the cybersecurity profession: a systematic review of related literature and opportunities for future research

Cited by 6 publications

References 107 publications

Reintegration of cyber veterans: challenges and strategies for post-war transition

Reintegration of cyber veterans: challenges and strategies for post-war transition

Psychological Effects of Continuity Threatening Cyber Incidents

Predicting Ethical Orientation Based on Personality for Tailored Cyberethics Training

Contact Info

Product

Resources

About