A survey of Estonian IT-specialists

In May 2024 we interviewed IT specialists from different Estonian companies to gain insights into the importance of cybersecurity, common incidents, and knowledge gaps within the industry. The goal was to understand where IT professionals might need additional cybersecurity knowledge and skills.

The importance of cybersecurity

A high level of cybersecurity offers numerous advantages beyond mere protection. It builds trust with customers and employees, enhances the company’s reputation, and safeguards sensitive data. By mitigating risks and reducing the likelihood of successful attacks, businesses can prevent significant financial losses and operational disruptions. Additionally, strong cybersecurity improves work efficiency and provides peace of mind, allowing companies to focus on their core competencies.

Interviewees highlighted the increasing sophistication of cyberattacks, particularly phishing attacks and ransomware. They emphasized the importance of user education to prevent these attacks. Common vulnerabilities include using outdated software, misconfigured network devices, and improperly secured remote access.

Cybersecurity in manufacturing

Manufacturing companies face unique cybersecurity challenges due to the use of specialized production devices and equipment, often with outdated software. The reliance on IoT devices and third-party services can further increase security risks. Cyberattacks on manufacturers can lead to significant financial losses, making a high level of cybersecurity essential.

Essential skills for IT specialists

The required knowledge and skills for IT professionals vary depending on their role. However, a basic understanding of cybersecurity hygiene, strong analytical thinking, problem-solving abilities, and effective communication are essential. These skills can be learned and developed through experience, the most important here is the ability and motivation to learn.

To enhance cybersecurity awareness, companies should implement regular training programs for all employees, conduct phishing tests, and proper procedures for handling cyber incidents. Collaboration between IT departments and other departments is crucial for addressing cybersecurity challenges effectively.

By investing in cybersecurity, companies can protect their assets, maintain their reputation, and ensure business continuity in an increasingly digital world.