International Cyber Expo International Cyber Expo
  • About Us
Friday, 10 July, 2026
IT Security Guru
International Cyber Expo
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Presenteeism: The Security Risk of Showing Up When You Shouldn’t

With many employees showing up to work when they're ill, it's not only long-term health on the line - but also security.

by Charley Nash
October 13, 2023
in Cyber Mindfulness Corner, Featured
Presenteeism: The Security Risk of Showing Up When You Shouldn’t
Share on FacebookShare on Twitter

Let’s talk about presenteeism.

Simply put, presenteeism is when an employee is constantly showing up at work, despite being unwell. In today’s hybrid world, this could mean either physically showing up at the office or logging on at home. As well as accounting for showing up when you’re physically or mentally unwell, symptoms also include not taking holidays, being ‘contactable’ outside of work hours, and so much more. In the long run, presenteeism isn’t good for organisations – or their security postures.

Presenteeism and Cybersecurity: How to Recognise Symptoms When They’ve Become Part of the Job

Many cybersecurity professionals wouldn’t think twice about showing up to work when they were feeling under the weather. Many of the symptoms of presenteeism (showing up regardless, answering phone calls outside of work, being contactable 24/7/365 etc.) have become in and of themselves part and parcel of the role of a cybersecurity professional. Adversaries don’t stop and neither do the people who protect them.

Andy Robertson, Head of Enterprise and Cybersecurity Business, Fujitsu UK&I, further explains the toll that responsibility takes on cybersecurity professionals: “There can be a feeling that there is always another storm brewing that will need to be addressed, and that can be really taxing on the mental health of workers.”

“The confidentiality of the role adds challenges, too: people can’t always go home and debrief with their loved ones about their day without worrying that they will let something slip. So even if they have a support network around them, they can’t always use it.”

We all know the statistics. Cybersecurity professionals are burnout, overwhelmed, and vastly under resourced/funded/staffed. We are also aware of the ever increasing skills gap and talent acquisition and retention crisis. All of these systemic problems put a strain on the industry, forcing many to feel responsible for showing up.

The impact of presenteeism isn’t good for anyone. For the individual, long-term illnesses can develop and burnout can hit pretty quickly. For organisation’s there’s often a significant productivity loss. But where does presenteeism leave an organisation’s security posture?

How Presenteeism Impacts Security Postures

Robertson continues: “A good security posture needs three elements – people, processes, and technology – and when the people factor takes a hit, so does overall security.”

Paul Baird, Chief Technical Security Officer, Qualys, adds: “From a security perspective, [presenteeism] is a significant risk because it can lead to less care being taken or more mistakes creeping into work when, at the same time, someone feels they have to work harder and harder in order to keep up. It becomes a self-fulfilling prophecy, and that increases the risk of a mistake over time.”

Evidently, when an employee is under significant stress they cannot perform at their best, which can lead to mistakes. In the realm of cybersecurity, mistakes can be costly in a number of ways, from financially to reputationally. If employees are showing up when they shouldn’t, it’s possible that they become accidental threats themselves.

But it can be hard to know when to not show up, especially with evolving threats, the cost-of-living crisis making stable jobs critical and many organisations being already short staffed. So how can organisation’s support employees who feel the need to show up when they really shouldn’t?

How can organisations stop presenteeism in the first place?

Baird suggests that embracing new technologies may be one way to ease the burden of ever-evolving threats on cybersecurity professionals: “With so many technical eyes watching and so many security alerts being generated, allowing AI and automation to take that noise away from security teams will relieve the pressure.”

According to Ciaran Luttrell, Senior Director, EMEA SOC Operations, eSentire, another way to reduce burnout and presenteeism in employees is to, as organisations, have processes in place to make employees feel like they can take time off: “To manage this kind of pressure, it is essential to let your team know that they can take time away rather than feeling they need to be there for every event – you should have backup people and processes in place to cover, and full handover processes that can ensure everyone is up to speed. Likewise, you should also have battle hardened operating procedures for managing personnel and ensuring their needs are always a priority.”

Succinctly, Luttrell says: “Avoiding presenteeism is about making it clear that security is a marathon, not a sprint.”

As with most things in the sphere of wellbeing and cybersecurity, this change must come from the top down. In a similar way to the approach to blame culture, business leaders must take a proactive stance on battling issues like presenteeism in the workplace. Cliché as it may be, prevention is, as always, better than cure.

 

 

ShareTweet
Previous Post

No, We’re Not All Going Passwordless

Next Post

SMBs Struggle to Keep Pace with Cyber Security Threats

Recent News

hand typing on keyboard

CitrixBleed 2 exploited in repeatable attack chain culminating in DragonForce ransomware, researchers find

July 9, 2026
malware

Huntress Uncovers ‘Vibe-Coded’ Malware Used to Map Active Directory Environments

July 8, 2026
Check Point’s ThreatCloud AI Blocked 4.6 Billion Attacks in 2025, Latest ESG Report Reveals

Check Point’s ThreatCloud AI Blocked 4.6 Billion Attacks in 2025, Latest ESG Report Reveals

July 8, 2026
Kirsty Fowler, WorkNest Secure

Next Gen Spotlights: Building a More Resilient Future – Q&A with WorkNest Secure

July 8, 2026

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2026 IT Security Guru - Website Managed by Dessol

  • About Us
Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2026 IT Security Guru - Website Managed by Dessol