Wondering if infosec folks consider the risk of burnout to be an unavoidable part of cybersecurity roles?

Yes, it’s unavoidable in cyber52%

No, it can be avoided43%

I don’t know…4%


12.1k views1 Upvote6 Comments

Senior Information Security Manager in Software, 501 - 1,000 employees
I actually spoke about it here: https://www.linkedin.com/pulse/where-have-all-cyber-security-pros-gone-amir-bormand/

With that, if firms are concerned about employee burnout, they will have processes in place to deal with it and avoid it.

If they want to run a sweatshop at the expense of their employee's mental health, then there will certainly be burnout.

Burnout is 100% avoidable, and it is management’s responsibility to ensure that.
Director of Network Transformation, Self-employed
This is a leadership problem.  Can be due to unrealistic expectations, poor culture, resourcing, technical debt...  but they all trace back to leadership.  Take care of your people, they will take care of you.  
CISO in Healthcare and Biotech, Self-employed
To avoid burnout in the cybersecurity industry, professionals should prioritize work-life balance, set clear boundaries, practice stress-management techniques like exercise and mindfulness, engage in continuous professional development, and foster a supportive work environment that encourages breaks and recognizes achievements.
Director of IT in Energy and Utilities, 10,001+ employees
We must ensure that we are leading by example on work/life balance.  The stresses of cyber are hard to turn off, but if our people don't see us taking downtime to recharge, they won't either.  
CIO, Self-employed
We discuss cyber burnout regularly on the SSE Forum podcast. I think both the employee and employer has to take some responsibility for burnout. As employees we need to try and be aware of the symptoms, but so do our employers. We need to be able to take breaks when we feel we are getting overwhelmed. 
CISO in Software, 201 - 500 employees
Honestly, saying that infosec folks are simply doomed to burn out sounds like an excuse for the inability to properly communicate the risks and consequences to the business. In my opinion, allowing my security team to burn out creates much higher exposure over much longer period of time than any limitation into the coverage of the infosec operations. 

Content you might like

Community User in Software, 11 - 50 employees

organized a virtual escape room via https://www.puzzlebreak.us/ - even though his team lost it was a fun subtitue for just a "virtual happy hour"
Read More Comments
8.1k views26 Upvotes58 Comments

Cyber insurance with ransomware coverage44%

Law enforcement contact(s)44%

Ransomware response plan60%

Ransomware task force/team39%

Bitcoin account for ransomware payments14%

Disaster recovery site33%

Other (comment below)1%



CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
42.1k views131 Upvotes319 Comments

Strongly agree5%




Strongly disagree1%

Other (please comment)0%


2.2k views1 Upvote2 Comments