Shortage of Cybersecurity Talent in India

Source: ET 

India's enterprise sector is facing an unprecedented security crisis as a massive deficit in skilled cybersecurity professionals leaves critical digital assets vulnerable to increasingly sophisticated cyberattacks. 

• Talent Deficit: India has approximately 380,000 cybersecurity professionals against an enterprise demand of more than 1.2 million, creating a massive workforce gap. Experts indicate a 30-40% shortfall in roles requiring deep cloud, platform, and enterprise risk experience. 
  • The deficit is particularly acute in niche domains such as identity and access architecture, threat intelligence, platform security, privileged access management, digital forensics, and cloud-native security—areas essential for modern enterprise defence. 
• Extended Hiring Cycles: Cybersecurity roles now have some of the longest hiring cycles in the technology sector, with average time-to-fill exceeding 90 days. Offer acceptance rates have dropped to nearly 70% from the earlier 80-85%. 
• Leadership Vacuum: The shortage creates a "strategic vacuum". Prolonged vacancies lead to slower threat detection, fragmented incident response, higher remediation costs, and delayed compliance. 
• Threat Landscape Escalation: Spyware attacks surged 273% in the first half of 2025 targeting corporate India's "data goldmine" of sensitive deals, financial flows, and intellectual property. Password-stealing malware rose by nearly 18% to 111,281 incidents. 
  • A report by the Data Security Council of India (DSCI) recorded 265.52 million malware detections across enterprise endpoints between October 2024 and September 2025—equivalent to approximately 505 detections every minute. 
• Organisational Adaptation Strategies: Research shows 92% of senior IT security professionals in India prefer outsourcing security operations or adopting Security Operations Center as a Service (SOCaaS) models for specialised expertise and round-the-clock monitoring.