If we define security using the CIA triad of Confidentiality, Integrity and Availability and apply it to staff in your organisation, then burnout is a failure in at least Integrity and Availability.
If they work through burnout, then their work will be sub-optimal; that can be stated as an integrity issue potentially.
If they leave then any domain specific knowledge and knowledge specific to the processes of the company is gone. You don’t have access to it any more, thus it is an availability issue.
Security issues are treated seriously (mostly) but human issues that affect the business seldom are. We need to change this.tags: