More than 80% of organizations currently use AI in cybersecurity operations or plan to adopt it soon, yet nearly 70% of security professionals say their jobs have become more difficult since AI's widespread adoption, according to a new study from the Information Systems Security Association (ISSA) and research firm Omdia. The Life and Times of Cybersecurity Professionals report found that nearly half of respondents have considered leaving their roles in the past 18 months, with 57% of those contemplating departure thinking about exiting the cybersecurity field entirely.
The eight-year study shows consistent patterns of job dissatisfaction, with 53% of those considering leaving citing job stress as the primary reason. Other factors include lack of career advancement opportunities (37%), desire for better work-life balance (34%), and inadequate organizational commitment to cybersecurity (33%). More than two-thirds (68%) of respondents agreed that being a cybersecurity professional has become more difficult over the past two years, with 55% blaming increased complexity and workloads, and 52% pointing to expanding cyberthreats and attack surfaces.
The global cybersecurity skills shortage continues to impact organizations significantly, with 75% of information security professionals reporting effects on their programs. These impacts include redirected time (44%), increased workload on existing staff (42%), heightened burnout and attrition (37%), more human errors in cybersecurity tasks (27%), and increased budget needs for external services (24%). Despite AI's growing presence, only 24% of respondents viewed increased AI adoption as a solution to the skills shortage, with professionals instead favoring greater organizational commitment to training (42%) and higher compensation (40%).
The study found that half of organizations already use AI to automate scanning and testing, with 48% using it for predictive analysis. However, experts warn that AI alone cannot solve the skills gap. Melinda Marks, practice director for cybersecurity at Omdia, emphasized that organizations must invest in their people first through training, inclusion, and clear career paths. The research also revealed a notable shift in CISO roles, with virtual CISOs increasing from 5% in 2024 to 16% in 2025, appealing particularly to smaller organizations.
Security professionals should advocate for increased training investments and clearer career development paths within their organizations. CISOs considering AI tools must conduct thorough due diligence to ensure vendors provide proven, vetted solutions that meet industry standards. Organizations should recognize that while AI can automate tedious tasks like data gathering and analysis, human expertise remains essential for strategic decision-making and relationship building with business leadership.
Source: https://www.reversinglabs.com/blog/ai-cybersecurity-burnout


