03 October 2025

A recent report highlights a growing crisis across the EMEA region, where many organisations are resorting to risky cybersecurity practices due to a widespread shortage of skilled professionals.

Insight’s research indicates that 64% of organisations in Europe, the Middle East, and Africa are relying on temporary fixes and workarounds to cope with mounting cybersecurity demands. The situation is particularly severe in the UK, where 67% of organisations report a cybersecurity skills shortage, with more than half describing the impact as “severe” or “significant.” The deficit is most acute at senior levels, with many respondents citing a lack of expertise in strategic areas such as governance, planning, and risk assessment.

Across the broader region, only 24% of IT decision-makers believe their organisations possess sufficient in-house cybersecurity skills to keep pace with evolving threats. Consequently, over half of the surveyed businesses report delays in critical projects or technology initiatives, and an equal proportion struggle to meet compliance requirements due to a scarcity of cybersecurity expertise.

The study identifies the high cost of hiring and training as the primary obstacle, with 68% of IT leaders citing this as a key barrier. Additionally, 65% point to the limited availability of qualified candidates in the market. The skills shortage extends beyond technical roles to operational, leadership, and compliance positions, undermining both daily resilience and long-term strategic planning.

The UK figures are particularly stark, with more than half of organisations experiencing “severe” or “significant” impacts from the skills shortage. These include delays in key projects and challenges in compliance, mirroring the overall EMEA trend. The report concludes that until organisations can address both financial constraints and talent shortages, many will continue to rely on temporary security measures that increase their vulnerability to cyber threats.