The Rising Tide of Cyber Threats in Spain: The Future of Spanish Cybersecurity with Eric Martínez Cancela

Eric Martínez Cancela discusses Spain's cybersecurity growth, SME vulnerabilities, and the talent shortage. Essential insights on the future of digital defense in Spain

As Spanish companies accelerate their digital transformation, they are simultaneously creating a larger and more critical attack surface, making robust cybersecurity not just a technical necessity but the very foundation of economic resilience.

This expanding digital frontier is where experts like Eric Martínez Cancela operate. As a cybersecurity professional, he navigates the complex landscape of threats and solutions shaping Spain's digital economy.

In this interview, we explore with Eric the rapid growth of the sector, the evolving threats from ransomware to regulatory changes, and the critical challenges and opportunities that lie ahead for businesses and the nation.

Interview with

How has the demand for cybersecurity services grown in Spain over the past few years?

Demand has grown significantly in recent years.

More and more companies are realizing that cybersecurity is no longer optional, but a fundamental pillar of business continuity.

The increase in cyberattacks, the accelerated digitalization after the pandemic, and regulatory pressure (such as GDPR and the upcoming NIS2 directive) have all driven the adoption of protection, auditing, and incident response services.

Spain is following the same trend as the rest of Europe, with the market growing at double-digit rates annually.

What are the main cybersecurity threats currently facing Spanish companies?

The most critical threats today are ransomware attacks, advanced phishing campaigns, and data breaches.

Supply chain attacks are also gaining prominence, as attackers target less-protected vendors to infiltrate larger organizations.

Additionally, poorly configured IoT devices and vulnerabilities in cloud environments are becoming increasingly common attack vectors.

How prepared are small and medium-sized businesses (SMEs) in Spain to deal with cyberattacks?

The reality is that most SMEs are not sufficiently prepared.

Many still view cybersecurity as a cost rather than an investment, which results in a lack of contingency planning, poorly managed backups, and insufficient employee training in cyber hygiene.

At the same time, SMEs are prime targets for attackers precisely because they tend to have weaker defenses compared to large corporations.

What role does the Spanish government play in strengthening national cybersecurity?

The government, mainly through the INCIBE (National Cybersecurity Institute) and the CCN-CERT (National Cryptologic Center), plays a key role in raising awareness, providing training, and coordinating responses to large-scale incidents.

Spain also actively participates in European cybersecurity initiatives and is implementing the NIS2 directive, which will require a broader range of sectors to comply with strict security measures.

What are the biggest challenges in finding and retaining cybersecurity talent in Spain?

The main challenge is the shortage of qualified professionals.

Demand far exceeds supply, and many highly specialized profiles move abroad in search of better opportunities.

Retaining talent requires offering engaging projects, continuous training, and attractive career paths areas where many Spanish organizations still need to improve.

Where do you see the greatest opportunities for growth in Spain’s cybersecurity sector in the next 5 years?

I see the biggest opportunities in three areas:

1. Managed Security Services (MSSPs) for SMEs, as more small businesses will look to outsource their security needs.

2. Cloud security and AI-driven cybersecurity, both for defense and threat detection.

3. Regulatory compliance and advisory services, since new European regulations will force companies to raise their security standards.

Overall, the Spanish cybersecurity market is in full expansion, and companies that can combine technology, talent, and strategic vision will see tremendous growth over the next few years.