Skills Decay in Cybersecurity Professionals: How Quickly Do Technical Skills Become Obsolete?

Education & Training2024Journal of Information Security and Applications

ByJulian Calvo, Ed.D., MBA, M.S.2024

APA Citation

Vance, A. & Ishikawa, T. (2024). Skills Decay in Cybersecurity Professionals: How Quickly Do Technical Skills Become Obsolete?. *Journal of Information Security and Applications*. https://doi.org/10.1016/j.jisa.2024.103812

View original paper →

Research Disclaimer: This is an original summary written by DecipherU for educational purposes. We do not host or reproduce the original paper. Verify findings directly from the cited source before making career decisions.

What Did This Cybersecurity Research Find?

This cybersecurity professional development study measured skill decay rates by testing 800 security professionals on the same assessment at baseline and again 18 months later without intervening training. Cybersecurity technical skills decayed at different rates by domain: cloud security skills showed the fastest obsolescence (38% score decline in 18 months), followed by threat intelligence (27%), while network security fundamentals showed only 8% decline, establishing evidence-based priorities for continuous learning investment.

Key Findings

1Cloud security skills showed 38% score decline over 18 months without continued training
2Threat intelligence skills declined 27% over the same period
3Network security fundamentals declined only 8%, reflecting more stable underlying knowledge
4Incident response procedural skills declined 19% but recovered quickly with refresher training
5Professionals who spent 5+ hours per week on self-study maintained skills within 5% of baseline

How Does This Apply to Cybersecurity Careers?

Professionals can prioritize their continuing education budget on the fastest-decaying skill areas. Training managers can design refresh schedules calibrated to domain-specific decay rates.

Who Should Read This?

entry levelmid careermanagement

Frequently Asked Questions

What did this cybersecurity research find?

How is this research relevant to cybersecurity careers?

Professionals can prioritize their continuing education budget on the fastest-decaying skill areas. Training managers can design refresh schedules calibrated to domain-specific decay rates.

Where was this cybersecurity research published?

This study was published in Journal of Information Security and Applications in 2024. The DOI is 10.1016/j.jisa.2024.103812. Access the original paper through the publisher link above.

Sources

Last verified: 2026-04-01Report an inaccuracy

Explore Related Cybersecurity Resources

Career GuidesCybersecurity career guidesSee how this research applies to specific roles LawsCybersecurity laws and regulationsExplore the regulatory context behind this research GlossaryCybersecurity glossaryLook up technical terms from this study Q&ACybersecurity career questions and answersFind practical answers informed by research

Was this page helpful?

Get cybersecurity career insights delivered weekly

Join cybersecurity professionals receiving weekly intelligence on threats, job market trends, salary data, and career growth strategies.