Only 4% of surveyed organisations reported no cyberattacks

September 2024 News & Events, Information Security


As cyber threats escalate in frequency and sophistication, new research reveals an alarmingly high rate of security incidents over the past year. Experts point to insufficient awareness and qualified professionals as key contributing factors.

Fortinet conducted extensive research for its 2024 Cybersecurity Skills Gap Global Research Report. The study surveyed 1850 IT and cybersecurity decision-makers across 29 countries, including South Africa. While the report focuses on global trends, the data collected specifically from South African respondents reveals a concerning picture of the nation’s cybersecurity preparedness and resilience.

According to the South African data, only 4% of surveyed organisations reported no cyberattacks in the last 12 months. A staggering 50% suffered up to four attacks, while 10% experienced nine or more. The financial impact of these breaches has been severe, with 39% of South African respondents reporting losses exceeding $1 million, and at least one organisation suffering a loss of over $6 million.

Julie Noizeux, Channel Manager at Fortinet South Africa, says the high incidence of attacks is cause for concern. “Clearly, South Africa is a prime target for attacks, yet globally, we are lagging in terms of cybersecurity investments.”


Julie Noizeux.

Skills paradox

The research reveals a complex skills scenario. 60% of South African respondents believed attacks were due to a lack of in-house cybersecurity skills or trained IT/security staff, while 58% attributed attacks to a lack of cybersecurity awareness. Paradoxically, only 36% indicated struggles with recruiting cybersecurity talent, and a mere 28% reported challenges with retention.

According to Noizeux, cybersecurity skills are in short supply globally. In South Africa, companies face the added challenge of the brain-drain of skilled professionals seeking better opportunities abroad.

“I work with organisations that continuously struggle to find talent,” she says. However, some are getting creative, countering the skills gap using partners and advanced technology. At the same time, they are working hard to keep their top talent happy with attractive pay and perks.

“One way to secure the organisation with limited in-house skills is to leverage channel partners and companies to whom they can outsource cybersecurity services. We see growth in the number of organisations using managed security service providers who offer the full security stack and management of the environment.”

A platform approach

Advanced technologies offer another avenue for organisations grappling with skills shortages. Noizeux advocates for a unified cybersecurity approach. “By leveraging a unified cybersecurity fabric or platform that connects with multiple products, organisations can achieve a unified view of the entire environment, achieving consistent policies, management and control.”

This approach can streamline operations by reducing the number of different technologies staff need to master, potentially allowing for more efficient use of human resources. “Machine learning and AI are increasingly taking on complex cybersecurity tasks. These technologies can automate threat detection and response, which helps reduce the burden on staff for routine, manual processes.”

“Upskilling existing staff is a key strategy to address the skills shortage,” says Noizeux. “At Fortinet, we practice what we preach. We hire candidates who meet most of our criteria, then create personalised development plans to help them gain the necessary certifications and qualifications.”

Fortinet is also tackling the skills gap on a broader scale. The company offers free cybersecurity training and has set an ambitious goal to train one million people in cybersecurity skills by 2026. Addressing broader staff cybersecurity awareness gaps is crucial for reducing risk. It should be mandatory for staff to do cybersecurity awareness training as a continuous repeated exercise because the threats are changing continually.

Raising cyber awareness at the grass-roots level

Looking to the future, Noizeux believes cybersecurity education should start early. “The sooner we educate kids, the more valuable it will be for them in their personal and professional lives in the future.”

Fortinet is taking steps in this direction with its local Academic Partner Programme, which works with higher education institutions and schools around the world to help learners become part of an elite group of skilled cybersecurity professionals. It also has initiatives such as a local women’s employee resource group for cybersecurity in South Africa, aimed at raising awareness and inspiring girls to consider careers in the field.

As South Africa continues to face cybersecurity challenges, a multi-faceted approach combining skills development, outsourcing, advanced technologies, and early education may be key to bridging the cybersecurity skills gap and strengthening the nation’s digital defences.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
From the editor's desk: Keeping them out, keeping you aware
News & Events
Alarm, intrusion, and perimeter protection have been part and parcel of South African society for years. Many years ago, a home alarm consisted of wires covering one’s windows, which caused an alarm ...

Read more...
SMARTpod talks to The Risk Management Forum
SMART Security Solutions Editor's Choice News & Events Security Services & Risk Management Videos Training & Education
SMART Security Solutions recently released its first SMARTpod podcast, discussing the upcoming Risk Management Forum Conference 2024, which will be held on 26 September 2024 at the Indaba Conference Centre in Fourways, Johannesburg.

Read more...
There is a SaaS for everything, but at what cost, especially to SMEs?
Editor's Choice Information Security Security Services & Risk Management
Relying on SaaS platforms presents significant cybersecurity risks as the number of providers in your landscape increases, expanding your attack surface. It is important to assess the strength of the SaaS providers in your chain.

Read more...
New State of Physical Access Control Report from HID
HID Global Editor's Choice Access Control & Identity Management News & Events
HID released the 2024 State of Physical Access Control Report, identifying five key trends shaping access control's future and painting a picture of an industry that has been undergoing considerable transformation.

Read more...
Addressing today’s mining challenges: cyber risks beyond IT
Editor's Choice Information Security Mining (Industry)
Despite the mining industry’s operational technology systems being vulnerable to cyberattacks, many decision-makers still see these threats as purely an IT issue, even though a breach could potentially disrupt mining operations.

Read more...
Workforce Consortium to reskill 95 million people
Editor's Choice News & Events AI & Data Analytics
ICT Workforce Consortium of global leaders has come together, committing to train and upskill 95 million people over the next 10 years, as 92% of jobs analysed are expected to undergo either high or moderate transformation due to advancements in AI.

Read more...
How to effectively share household devices
Smart Home Automation Information Security
Sharing electronic devices within a household is unavoidable. South African teens spend over eight hours per day online, making device sharing among family members commonplace. Fortunately, there are methods to guarantee safe usage for everyone.

Read more...
Tech Trailblazers seeks the most innovative and diverse investors in enterprise tech
News & Events
This year, the global enterprise tech startup awards, the Tech Trailblazers, is looking for the most innovative and diverse VCs as well as its usual hunt for groundbreaking tech start-ups.

Read more...
ONVIF standards drive growth in physical security market
News & Events
ONVIF has announced that more than 30 000 product models in the $120  billion global physical security market meet the ONVIF conformance requirements for interoperability.

Read more...