All News & Insights

Cybersecurity has taken centre stage in the UK this year. With threats growing more sophisticated and regulatory scrutiny tightening, businesses are investing heavily to protect their data, systems and people. As a result, demand for cyber professionals is climbing at pace, and the competition to secure top talent is intensifying. At Harvey Nash, we’ve seen cybersecurity evolve from a back-office concern to a boardroom priority. Over the past year, the nature of hiring has shifted. Employers are looking for more than just technical firepower. They want strategic thinkers who can embed security into every part of the organisation. 2025 feels like a turning point. The risks are greater, the stakes are higher, and the need for experienced, capable cyber talent is now critical. As a recruitment partner, our role is to help organisations understand what’s happening in the market, and how to respond. Why Cybersecurity Talent Is in High Demand Across the UK, cyber threats are increasing in both frequency and severity. The Nash Squared/Harvey Nash Digital Leadership Report revealed 29% of digital leaders have experienced a major cyberattack in the past 2 years, ending a 5-year decline. The National Cyber Security Centre has also reported a significant rise in ransomware, phishing campaigns and attacks on critical infrastructure. For many businesses, the challenge is no longer just preventing breaches, but also being ready to respond, recover and learn. At the same time, regulations are tightening. From data protection requirements to the Online Safety Act, organisations face growing pressure to demonstrate strong governance and accountability. For sectors like finance, healthcare, energy and the public sector, this is especially urgent. Digital transformation is also playing a role. As cloud adoption accelerates and hybrid working becomes the norm, the attack surface expands. New technologies bring incredible opportunities, but also introduce new risks. These combined forces are making cybersecurity talent one of the most sought-after resources in the UK job market today. Key Cybersecurity Trends Shaping the UK in 2025 To understand the hiring landscape, it’s important to look at what’s actually happening on the ground. Here are the key trends shaping the cybersecurity conversation this year. Ransomware remains a major threat Attackers are becoming more targeted, more professional and more damaging, according to the Nash Squared/Harvey Nash Digital Leadership Report organised crime remains the biggest concern for digital leaders. Public services, councils and healthcare providers continue to be high-profile victims. This is driving demand for security operations specialists, incident response teams and forensic analysts. Supply chain risk is under the spotlight Breaches linked to third-party providers have exposed vulnerabilities beyond company walls. In response, organisations are investing in governance, risk and compliance roles to help manage vendor relationships and strengthen oversight. AI is creating both opportunities and risks Artificial intelligence is helping defenders automate responses and improve detection. But it is also giving attackers new tools to generate phishing emails, create deepfakes or even write malicious code. Employers are starting to look for professionals who understand how to manage this emerging risk. Data privacy is more important than ever The UK Information Commissioner’s Office is taking a more assertive stance on enforcement, particularly around how customer data is stored and shared. This has led to growing interest in privacy-focused roles, especially in data-heavy sectors like retail and financial services. Zero Trust architecture is gaining traction Many organisations are moving towards a Zero Trust approach, where nobody inside or outside the network is trusted by default. This model requires specialists who understand identity management, access control and modern network design. Cloud misconfigurations are still causing problems Despite advances in tooling, simple mistakes in cloud setup continue to be a leading cause of breaches. This has made cloud security engineers essential, particularly those who can work closely with DevOps teams. Human error remains a challenge People are still at the heart of many breaches, whether through phishing, mis clicks or insider mistakes. Employers are increasingly focused on awareness, behaviour and building a culture of shared responsibility across their teams. The Most In-Demand Cybersecurity Roles for 2025 The hiring market is being shaped by a push for resilience, agility and long-term thinking. Cybersecurity has emerged as the third most in-demand skill, with talent shortages up 6% on last year. These cyber focused roles are seeing consistent demand across the UK: SOC Analyst – Specialists who monitor threats, investigate incidents and act as the first line of defence. Typical salary: £40,000 to £60,000 Cloud Security Engineer – Experts in building and securing infrastructure in AWS, Azure or Google Cloud. Typical salary: £70,000 to £100,000 GRC Specialist – Professionals who align security with risk, compliance and governance frameworks. Typical salary: £60,000 to £90,000 IAM Lead – Focused on identity and access management, a vital area as companies adopt Zero Trust models. Typical salary: £65,000 to £95,000 DevSecOps Engineer – Combining development, operations and embedded security across the software lifecycle. Typical salary: £75,000 to £110,000 Threat Intelligence Analyst – Providing real-time insight into evolving threats and advising on proactive measures. Typical salary: £50,000 to £85,000 Cybersecurity Analyst – A key all-rounder role, analysts monitor networks, investigate suspicious activity and support incident response efforts. They are often the first to identify and flag vulnerabilities. Typical salary: £45,000 to £70,000 We’re also seeing new hybrid titles emerge, such as Cyber Risk Manager or AI Security Consultant, reflecting the broader integration of security across the business. The Skills Employers Are Prioritising Employers are looking for more than technical knowledge, they’re searching for people who can make a real impact. Core technical skills include: Cloud security Incident response and threat hunting Identity and access management Zero Trust architecture Familiarity with UK regulatory standards and NCSC guidance Certifications often requested: CISSP, CISM, CISA CompTIA Security+ ISO 27001 Cloud security credentials (e.g. AWS or Azure certification) Soft skills are playing a bigger role too: Strong communication, especially with non-technical stakeholders Problem-solving in fast-moving environments Collaboration across departments Adaptability and strategic thinking Security is no longer confined to the IT team. Cyber professionals need to work closely with legal, operations, HR and even marketing , making soft skills essential. Challenges in Hiring Cybersecurity Talent There is no shortage of demand, but there are still real barriers when it comes to finding the right people. There simply aren’t enough candidates, particularly in areas like cloud security, GRC and threat analysis. Top talent is being snapped up quickly, often with multiple offers on the table. Hiring processes can be too slow or not well aligned with the role, leading to missed opportunities. Many employers struggle to assess technical capability, especially for niche roles. Cybersecurity professionals often need to be approached directly. Many are not actively applying for jobs, but may be open to a change if the role and organisation feel right. How Harvey Nash Supports Cybersecurity Recruitment At Harvey Nash, we have been supporting UK organisations with technology recruitment for over 35 years. Cybersecurity is now a fast-growing part of that journey. While this may be a newer specialism for us, we bring depth of experience, a broad talent network and a reputation for delivering results. We focus on understanding what makes each organisation unique, and tailoring our approach to find people who not only match the job description, but align with culture, values and long-term goals. Our consultants are embedded in the UK technology ecosystem and speak to cyber professionals every day. We’re able to advise on salary expectations, skill trends, and how to position roles in a competitive market. If you are building out your cyber team in 2025, and looking for a recruitment partner who understands both the urgency and complexity of the task, we’d love to talk. Please contact us here. Find all our cybersecurity jobs here. Conclusion Cybersecurity is no longer just an IT issue, it’s a board-level priority and a key pillar of operational resilience. The landscape is changing fast, and the organisations that succeed will be those that invest early in the right people. 2025 is shaping up to be a defining year for cybersecurity hiring. Whether you’re scaling up your team, building capability from scratch, or rethinking your security strategy, the right talent can make all the difference. At Harvey Nash, we’re here to help you navigate the market, connect with the right people and build a team fit for the future. If you’d like to explore how we can support your cybersecurity hiring plans, get in touch with our team here.  Mo Gaibee – Cyber Security

Cyber War Stories, Supply Chain Blind Spots & Why AI Is the New Risk Frontier Cyberattacks are no longer an “if”—they’re a “when.” Emma Wright, Partner at Crowell & Moring and a leading voice in privacy and cybersecurity law, joins Tech Talks to share what really happens when your systems go down, why supply chain vulnerabilities keep boards awake, and how ransomware gangs like Scattered Spider operate. We explore the hidden weak spots, why basic attacks still succeed, and how boards can prepare for the chaos when—not if—a breach hits. Plus, Emma unpacks the legal and operational risks of rushing AI adoption without proper governance.   Tech Talks Podcast  Tech Talks is a podcast that probes the minds of tech leaders, hosted by Technology Evangelist David Savage. Each week, the show releases three episodes with new guests, covering the latest tech news, exploring new products and cultural transformations that drive the tech industry. Founded in 2015 Tech Talks has published over 650 episodes and attracts over 18,500 streams a month from a global audience. The podcast offers insights and ideas from leading technologists on culture, innovation, finance, growth, sustainability, and more, providing a platform for the c-suite, founders, and senior figures to hear from others facing similar challenges and tap into a wider community. Find out more about Tech Talks here.

The demand for AI skills is outpacing supply at an extraordinary rate. According to the latest Nash Squared/Harvey Nash Digital Leadership Report, 51% of global tech leaders now say their organisation has an AI skills shortage, almost double the 28% reported just a year ago. AI has leapt from sixth to the number one most-scarce skill in just 18 months, marking the steepest rise seen in over 15 years of research. Featured in a recent ZDNet article, Nash Squared CIO Ankur Anand , offers timely insight into why the gap has grown so significantly, and what organisations can do to address it. He points to the speed of innovation as a key factor: “There’s an unprecedented pace of development in generative AI and the supporting large language models… Professionals must learn new skills quickly, and traditional learning methods can’t keep pace.” The article explores how forward-thinking leaders are adapting, from rethinking recruitment to embedding continuous learning, and ensuring their organisations can attract and retain the right blend of AI expertise and ethical awareness. You can read the full ZDNet article, including Ankur Anand’s insights and reflections on the fast-moving AI skills landscape, here.

Sustainability Is Good Business—But Show Me the Numbers Regulation. Data overload. Greenwashing. Welcome to the frontline of corporate sustainability. In this episode, David speaks with Raphael Güller, Chief Product Officer at Sweep—a company helping businesses manage their carbon footprint with the same precision they apply to finance. Raphael shares why compliance isn’t enough, why Scope 3 emissions are often ignored, and how AI and automation are reshaping sustainability from a reporting headache into a real business advantage. This conversation is a must-listen for anyone serious about ESG strategy, proving ROI to the board, or building a resilient organisation in a low-carbon economy.   Tech Talks Podcast  Tech Talks is a podcast that probes the minds of tech leaders, hosted by Technology Evangelist David Savage. Each week, the show releases three episodes with new guests, covering the latest tech news, exploring new products and cultural transformations that drive the tech industry. Founded in 2015 Tech Talks has published over 650 episodes and attracts over 18,500 streams a month from a global audience. The podcast offers insights and ideas from leading technologists on culture, innovation, finance, growth, sustainability, and more, providing a platform for the c-suite, founders, and senior figures to hear from others facing similar challenges and tap into a wider community. Find out more about Tech Talks here.

Lessons in Leadership: What schools can teach the tech industry David returns to his old school, Bedlington Academy, for a powerful conversation with Deputy Head Simon Collins. On the surface, it’s a story about education. But listen closely and it’s a story every business leader needs to hear. Simon reveals how modern schools are navigating AI, digital literacy, and real-world career paths—while building resilience, independence, and ambition in communities too often overlooked. From AI in the classroom to unlocking aspiration in post-industrial towns, this isn’t just a lesson in pedagogy—it’s a call to industry to meet education halfway. Education and tech have more in common than you’d think—fast-moving environments, shifting expectations, and a duty to prepare people for the future. In this episode, Simon Collins unpacks how schools like Bedlington Academy are embracing AI, personal development, and creativity to prepare students for careers that didn’t exist a decade ago. He’s clear: the tech world needs to show up, not just with advice—but with collaboration, empathy, and opportunity. Tech Talks Podcast  Tech Talks is a podcast that probes the minds of tech leaders, hosted by Technology Evangelist David Savage. Each week, the show releases three episodes with new guests, covering the latest tech news, exploring new products and cultural transformations that drive the tech industry. Founded in 2015 Tech Talks has published over 650 episodes and attracts over 18,500 streams a month from a global audience. The podcast offers insights and ideas from leading technologists on culture, innovation, finance, growth, sustainability, and more, providing a platform for the c-suite, founders, and senior figures to hear from others facing similar challenges and tap into a wider community. Find out more about Tech Talks here.

Just Breathe: Gwyn Williams on Tech, Health and Scaling with Purpose What if the next innovation in health tech isn’t an app—but a smarter way to inhale steam? Gwyn Williams joins us to unpack how WellO₂ is turning breathing into a performance metric, from elite football to everyday wellness. Gwyn Williams, UK Sales and Marketing lead for Finnish healthtech firm WellO₂, joins David to explore how their steam-powered breathing trainer is tackling one of the world’s most overlooked health issues: how we breathe. From clinical use to elite football partnerships (👋 West Ham), WellO₂ combines resistance, steam, and smart tech to support recovery, boost vocal strength, and battle the invisible strain of urban living. Tech Talks Podcast  Tech Talks is a podcast that probes the minds of tech leaders, hosted by Technology Evangelist David Savage. Each week, the show releases three episodes with new guests, covering the latest tech news, exploring new products and cultural transformations that drive the tech industry. Founded in 2015 Tech Talks has published over 650 episodes and attracts over 18,500 streams a month from a global audience. The podcast offers insights and ideas from leading technologists on culture, innovation, finance, growth, sustainability, and more, providing a platform for the c-suite, founders, and senior figures to hear from others facing similar challenges and tap into a wider community. Find out more about Tech Talks here.

Beyond the Buzzwords: AI, Bias and Staying Relevant If AI feels like it’s moving faster than your ability to keep up—you’re not alone. But according to Fawad Qureshi, staying relevant isn’t about knowing everything. It’s about learning to ask the right questions.From “data plumber” to field CTO at Snowflake, Fawad Qureshi has made a career out of translating complexity into clarity. In this wide-ranging conversation, he joins David to break down the psychology of AI adoption, the myth of machine intelligence, and why the most dangerous phrase in tech is “that sounds smart.” From AI hallucinations to deepfake threats, Fawad urges leaders to lean into critical thinking, reject hype, and rethink the skills that really matter in an age of accelerating automation.   Tech Talks Podcast  Tech Talks is a podcast that probes the minds of tech leaders, hosted by Technology Evangelist David Savage. Each week, the show releases three episodes with new guests, covering the latest tech news, exploring new products and cultural transformations that drive the tech industry. Founded in 2015 Tech Talks has published over 650 episodes and attracts over 18,500 streams a month from a global audience. The podcast offers insights and ideas from leading technologists on culture, innovation, finance, growth, sustainability, and more, providing a platform for the c-suite, founders, and senior figures to hear from others facing similar challenges and tap into a wider community. Find out more about Tech Talks here.

Scaling Fast, Dressing Smart: Engineering lessons from Rent the Runway What do you get when a fashion disruptor scales into a tech-first logistics machine? A story about pivoting through a pandemic, building globally distributed teams, and making engineering culture fit for the runway. SVP of Engineering Becky Case and VP Engineering Ronan Conlon from Rent the Runway join David at Dublin Tech Summit to talk leadership, culture, and the realities behind scaling a business that blends tech, logistics, and luxury fashion. From launching a Galway engineering hub just before COVID, to avoiding the temptation of hypergrowth, Becky and Ronan share the backstage view on building with intent—and what it takes to preserve creativity and collaboration when you’re growing fast. Tech Talks Podcast  Tech Talks is a podcast that probes the minds of tech leaders, hosted by Technology Evangelist David Savage. Each week, the show releases three episodes with new guests, covering the latest tech news, exploring new products and cultural transformations that drive the tech industry. Founded in 2015 Tech Talks has published over 650 episodes and attracts over 18,500 streams a month from a global audience. The podcast offers insights and ideas from leading technologists on culture, innovation, finance, growth, sustainability, and more, providing a platform for the c-suite, founders, and senior figures to hear from others facing similar challenges and tap into a wider community. Find out more about Tech Talks here.

Cybercrime in the Age of Accelerants Trend Micro’s Director of Forward-Looking Threat Research, Robert McArdle, joins David to unpack how large-language-model (LLM) tech is changing the economics of cyber-crime—and what leaders can do to keep risk at “walk-down-the-main-street” levels instead of “Rio-back-alley” chaos. From TikTok–style malware baits to zero-trust guard-rails, Robert explains why awareness, adaptive security and simple governance steps matter more than ever. Tech Talks Podcast  Tech Talks is a podcast that probes the minds of tech leaders, hosted by Technology Evangelist David Savage. Each week, the show releases three episodes with new guests, covering the latest tech news, exploring new products and cultural transformations that drive the tech industry. Founded in 2015 Tech Talks has published over 650 episodes and attracts over 18,500 streams a month from a global audience. The podcast offers insights and ideas from leading technologists on culture, innovation, finance, growth, sustainability, and more, providing a platform for the c-suite, founders, and senior figures to hear from others facing similar challenges and tap into a wider community. Find out more about Tech Talks here.