istock.com/metamorworks
Fortinet recently released their 2026 Global Cybersecurity Skills Gap Report, revealing the emerging and persistent challenges organizations face as they grapple with ongoing cybersecurity skill shortages and the ever-evolving threat landscape. The global survey’s key findings include:
- A lack of cybersecurity skills, stemming, in part, from insufficient investment in cybersecurity talent.
- Although cyber defenders are effectively leveraging AI-powered tools, upskilling and reskilling are necessary to fully reap the benefits.
- Despite gaps in investment, intentional efforts are being made to attract and retain top-tier cybersecurity talent.
- 86 percent of organizations report one or more breaches in the past 12 months, with 52 percent saying breaches cost them more than $1 million—up from 38 percent in 2021. Breaches cost most in North America, with $2 million being the average cost of a breach.
- For the third consecutive year, IT leaders cited lack of cybersecurity skills as a top cause of security breaches (56 percent). Additionally, 51 percent say that they need senior-level cybersecurity skills most of all, yet 49 percent struggle to get approval for additional cybersecurity talent. This is surprising as 50 percent say executives and even Board members have faced penalties after a cyberattack, underscoring the risk.
- The use of AI poses a risk that people don’t fully understand. Only half of leaders believe their Board members are “fully aware” of potential risks from AI use.
- As AI adoption continues, 63 percent expect more need for AI oversight and governance roles on cybersecurity teams over the next three years.
- 92 percent revealed they would pay for an employee to get certified, up from 73 percent of respondents in the 2025 report.
- 91 percent of respondents are using or experimenting with AI-powered cybersecurity solutions.
- 84 percent say AI-enhanced security tools are helping IT and security teams be more effective and efficient. This is critical, as cyber defenders and cybercriminals are now equipped with the same technology; 44 percent of respondents cited defending against AI cybersecurity attacks as a top concern.
- Despite this dynamic, 60 percent of respondents say their top recruiting challenge is finding cybersecurity talent with specific experience in AI.
- Organizations say they require staff with new skillsets to support their adoption of AI, including: AI model development, AI tool oversight, and security automation. To meet these needs, 59 percent of organizations are developing internal training or reskilling programs to support AI adoption.
To help organizations address the challenges they face as a result of the cyber skills gap, the Fortinet Training Institute provides one of the largest and broadest training programs in the industry, and includes a Security Awareness Training service for organizations to develop a cyber-aware workforce.
Fortinet is on track to train one million people in cybersecurity around the world this year, a pledge that began in 2022.
