CompTIA - Critical Skills for Enterprise Success in Cybersecurity: Insights from the Cybersecurity Study

October 28, 2025 - Following CompTIA’s recent enterprise webinar, it’s clear that building a robust cybersecurity certification playbook is crucial to closing enterprise cybersecurity skill gaps and supporting the upskilling of security teams. Panelists Seth Robinson (VP, Industry Research, CompTIA) and Ahmad Kakar (Healthcare IT Leader at Adventist Health) discussed real-world challenges, technology trends, and actionable workforce development strategies to help organizations stay ahead.

Key takeaways from CompTIA’s enterprise cybersecurity webinar

Cybersecurity sentiment is improving

For years, sentiment about cybersecurity was stagnant at best. But CompTIA’s research now shows organizations are feeling more positive, attributed to improved investment, security class rigor, policy enhancements, and increased adoption of security best practices and certifications.

“People are feeling a little bit more warmly about cybersecurity now.” – Seth Robinson

Top technology trends: AI, OT, and data drive security evolution

AI and cybersecurity

AI is everywhere, but most organizations are just beginning their cybersecurity certification path and practical adoption. AI is used for both advanced cyberattack prevention and defensive automation. Staff must understand both implementation and risk management—making security certification in AI, automation, and analytics a growing necessity.

Operational Technology Security (OT Security)

Network-connected OT—such as medical devices and industrial sensors—brings new cyber risks. Security teams must blend IT and OT security training to cover all vulnerabilities, align goals for uptime and reliability, and ensure all staff understand the unique risks (for roles like SOC analyst, penetration tester, and sysadmin).

Data security strategies

High-quality, secure data is at the heart of all cybersecurity efforts. Still, fewer than 60% of companies rate their teams as highly capable in areas like cloud penetration testing, endpoint security, or manipulating/defending enterprise data. Certifications in cloud security, web app pen testing, and analytics can boost team capability and confidence.

Addressing deep cybersecurity skill gaps in the Enterprise

Despite growing awareness, enterprises struggle to hire enough skilled security professionals. Here’s what CompTIA research and webinar experts suggested:

Hiring is not enough: Strategic new hiring for key cyber security job titles helps, but the talent pool is limited.
Prioritize upskilling: Reskill and retrain current staff through technical training, IT online classes, and security certification courses.
Broaden the skill list: Key needs include network/infrastructure security, application security, data security, incident response, and identity management.
Certification matters: Encouraging completion of cybersecurity certifications like CompTIA Security+, CySA+,and SecurityX, support compliance (such as DoD 8140) and builds team credibility.

Vendor consolidation and strong security governance

Too many security tools create complexity and risk.

Best Practices:

Consolidate cybersecurity vendors; choose systems aligned with your cybersecurity roadmap and regulatory requirements.
Audit and eliminate redundant or outdated solutions.
Apply clear security governance to ensure tools, policies, and teams are fully integrated and understood company-wide.

How companies close cybersecurity skill gaps

CompTIA’s survey revealed multiple strategies that actually work for closing skill gaps—here they are in order of effectiveness:

New hiring: 56% add employees to fill top paying cyber security job titles like SOC analysts and penetration testers.
Upskill & retrain: 54% engage current staff in online training, virtual technical training, and ongoing study for cybersecurity analyst certification.
Certification: 48% require staff to earn new or higher security certifications such as CompTIA Security+, CySA+, or PenTest+.
Third parties: 46% use outside providers for SOC analyst skills or vulnerability assessment—but most prioritize internal skill-building.

Cross-training and workforce development for resilience

Panelists noted that hiring is only part of the answer; truly robust teams develop talent from within.

Education: Offer core IT training courses, self-paced online learning, like CompTIA OnDemand, and formal certification programs (Security+, CySA+, Cloud+).
Engagement: Simulate attack scenarios through tabletop exercises, cross-disciplinary project work, and group cybersecurity practice tests.
Exposure: Assign staff to real incident response, system admin, or pen testing projects that require them to apply—and prove—new skills.

“Having the right certifications is important—but being able to apply that knowledge in real scenarios is what sets you apart.” — Ahmad Kakar

Next steps

Building an effective cybersecurity certification roadmap is the best way to close cybersecurity skill gaps, support a security-first culture, and future-proof your enterprise workforce.
Ready to secure your organization and elevate your IT team?

CompTIA certifications are available in Romania through Simple IT, CompTIA Partner in Romania.

About Simple IT

SIMPLE IT is a distributor for software solutions and hardware appliances, adding value with consulting, training, implementation, configuration and support services, backed by certified specialists, in order to offer the best IT experience to customers and partners. For more information, please visit www.simpleit.com.ro.

October 2025