2024 Cybersecurity Insights: Key Takeaways from the Scottish Market

As we reflect on 2024, the cybersecurity landscape in Scotland has been dynamic, with notable trends shaping how businesses defend against evolving threats. At TechForce Cyber, we’ve seen first-hand how companies are adapting and where challenges persist. Here are some key takeaways based on our observations, industry developments, and market insights from leading analyst firms.

Growing Focus on Proactive Threat Detection

This year, many Scottish organisations shifted from reactive to proactive cybersecurity measures. We noticed an increasing investment in threat intelligence platforms, managed detection and response (MDR) services, and continuous monitoring tools.

According to a recent Gartner report, global spending on cybersecurity is expected to exceed £180 billion by 2025, with proactive threat detection technologies leading the charge. Businesses are realising that early detection can save millions in potential breach costs, reducing downtime and safeguarding their reputations.

There has been more interest and focus on Cyber Incident Response planning from businesses, whether that is due to Cyber Insurance requirements or the rise in cyber incidents.

“The mindset change from ‘if we get attacked’ to ‘when we get attacked’ has been significant,” says Jai Aenugu, Founder & CEO of TechForce Cyber. “Businesses are embracing continuous monitoring and real-time threat detection to stay ahead of attackers.”

A mid-sized financial services firm we work with reduced its incident response time by 40% after implementing proactive threat-hunting protocols. They achieved this by integrating a next-generation security information and event management (SIEM) system and conducting regular threat-hunting exercises.

Supply Chain Security Under the Microscope

With increased reliance on third-party vendors, supply chain security has become a major priority. Businesses in sectors like energy, manufacturing, and healthcare faced growing pressure to vet vendors and secure critical data-sharing points.

According to IBM’s Cost of a Data Breach Report, 62% of breaches in 2024 involved third-party vendors. This statistic underscores the urgent need for businesses to secure their supply chains and regularly audit external partners. Weak links in supply chains have increasingly become a favourite target for attackers.

“We’ve helped several clients strengthen their supply chain risk management frameworks this year,” Jai notes. “No company can ignore the risks posed by third-party breaches.”

A Scottish energy company engaged TechForce Cyber to assess its vendor network, reducing its third-party risk exposure by 30% within six months. This involved comprehensive risk assessments, continuous monitoring of vendor systems, and the development of incident response protocols.

Earlier in the year, St James’s Place pushed the Cyber Essentials Plus certification as a minimum requirement for all their partners, reducing cyber incidents by 90% (source: Cyber Essentials impact survey). Cyber Insurance providers have been promoting healthy cyber hygiene.

Talent Shortages Remain a Challenge

Despite significant growth in the cybersecurity sector, finding skilled professionals has been a persistent hurdle. The talent gap has pushed businesses to explore managed security services, automation, and internal training programmes.

The UK’s cybersecurity skills shortage increased by 25% in 2024, according to the (ISC)² Cybersecurity Workforce Study. This shortage has forced many companies to reconsider their hiring strategies, invest in reskilling existing employees, and partner with managed service providers.

“The skills shortage won’t disappear overnight,” Jai explains. “But forward-thinking companies are bridging the gap by upskilling employees and partnering with cybersecurity specialists.”

Over the past year, we have created opportunities for interns, placement students and have been educating about the various paths into Cyber Security to encourage more people into the industry.

Increasing Ransomware Threats

Ransomware attacks remained a critical concern, particularly for SMEs. We’ve seen a marked increase in businesses seeking ransomware readiness assessments, incident response planning, and security awareness training.

Cybersecurity Ventures predicts ransomware damages will reach £20 billion globally by 2025 (source). This increase is driven by the rise of sophisticated ransomware-as-a-service (RaaS) platforms that lower the barrier for cybercriminals and increase attack frequency.

“Being prepared is non-negotiable,” Jai emphasises. “The cost of ransomware goes beyond financial loss—it can cripple a company’s reputation.”

There have been numerous businesses impacted by ransomware. Arnold Clark remains the best example, alongside Scullion Law and many others. TechForce Cyber has conducted several Cyber Incident Exercising workshops over the past year, and as a result, companies have improved their Cyber Incident Response Plans, secured Cyber Incident Response Retainers, and developed strategies to address different cyber incidents.

Greater Regulatory Scrutiny and Compliance Demands

Compliance with data protection regulations such as the UK GDPR, NIS2 Directive, and sector-specific mandates intensified this year. Many businesses struggled to align cybersecurity practices with evolving legal requirements, often resulting in regulatory fines and operational disruptions.

In 2024, regulatory fines for data breaches in the UK increased by 35%, according to a report by PwC. This surge highlights the need for businesses to integrate compliance into their cybersecurity strategies proactively to avoid costly penalties and preserve their reputations.

“Staying compliant is a continuous process,” Jai points out. “We’ve helped organisations build security policies that not only meet current standards but are adaptable to future changes.”

TechForce Cyber worked with a local energy company based in Aberdeen to conduct a thorough audit of their information systems against the ISO 27001 standard, helping the client implement the necessary controls and successfully achieve accreditation.

AI and Deepfake Threats

The rise of AI-driven cyberattacks has created new challenges, particularly with the growing sophistication of deepfake technology. Scammers are now using AI-generated audio and video to impersonate trusted executives and trick organisations into transferring funds or sharing sensitive data.

A recent example is the case of UK-based engineering firm Arup, where employees were targeted in a deepfake scam involving AI-generated video calls (source). This incident highlighted how convincing and dangerous such attacks can be, underscoring the need for robust identity verification and employee training.

“Deepfake technology adds a new layer of complexity to cybersecurity,” Jai comments. “Businesses must implement multi-factor verification, train employees to spot anomalies, and use AI-powered tools to detect deepfake content before it causes damage.”

Looking Ahead: 2025 and Beyond

As 2024 comes to a close, the Scottish cybersecurity market stands at a critical juncture. Businesses must adopt a forward-looking approach, combining innovative technologies with strategic partnerships.

“Cybersecurity isn’t just a technical issue—it’s a business enabler,” Jai concludes. “In 2025, the winners will be those who stay agile, proactive, and committed to continuous improvement.”

At TechForce Cyber, we remain dedicated to helping businesses navigate this evolving landscape with expert guidance and robust solutions. Here’s to a safer, more resilient 2025!