This is where I've wondered if my job is too good to be true. From what I've seen over the last year, IT is full of people who will do just the bare minimum and collect their paycheck. Compare them to someone competitive, and they suddenly look like low hanging fruit when it comes time to trim. My job all but encourages you to do training on the clock. For example, they want me to do some cloud security training (they'll even pay for the cert). And this year at various conferences I saw people attending that were sponsored by their employers, while I was there on a student discount before I was working somewhere.
I agree with the importance of staying up to date. Listening to daily news updates on cybersecurity is an absolute must if someone is working in security. CE standards are pretty broad from what I've seen. For example, listening to the podcast above for 30 minutes a day can be be reported as 10 hours a month per ISC2's standards. I haven't checked on CompTIA's yet.
But I listen to that CPE while sipping coffee and attending the first "meeting" of the morning every day.
But like I said, I work in security which is different than tech. Every company needs security. Not every company needs a coder, developer, etc. If my ship suddenly went down, there are plenty of others to swim to.