Open in app

Sign in

Write

Sign in

Member-only story

The big lie of millions of information security jobs

Ben Rothke
8 min readNov 28, 2023

How can you know how many security jobs there are if there’s no real statistical data available?

https://imgflip.com/i/87fumc

Millions of information security jobs

As I wrote in Is there really an information security jobs crisis?, reports of millions of information security jobs are an exaggeration. Be it Cybersecurity Ventures which says there will be 3.5 million unfilled positions in 2025, or the ISC2 Cyber Workforce Study 2023 stating that there are roughly 4 million cybersecurity professionals needed worldwide, those numbers are not statistically defendable.

Nearly every story in the media, from Fortune with The cybersecurity industry is short 3.4 million workers — that’s good news for cyber wages, IBM with Bridging the 3.4 million workforce gap in cybersecurity, to the Institute for Pervasive Cybersecurity at Boise State University all reference the same ISC2 and Cybersecurity Ventures data.

The lack of empirical data has created a vacuum and no organization has filled that better than Cybersecurity Ventures. Even the vaunted McKinsey & Company quoted them in New survey reveals $2 trillion market opportunity for cybersecurity technology and service providers.

The author made this story available to Medium members only.
If you’re new to Medium, create a new account to read this story on us.

Continue in app
Or, continue in mobile web

Already have an account? Sign in

Ben Rothke
Ben Rothke

Written by Ben Rothke

607 Followers
56 Following

I work in information security at Tapad. Write book reviews for the RSA blog, & a Founding member of the Cloud Security Alliance and Cybersecurity Canon.

Responses (11)

Write a response

What are your thoughts?

Danny

Nov 29, 2023

follows the mantra of question everything

This is the way

Quintius Walker

Dec 2, 2023

master’s degree programs, and they will tell you the challenges they are facing.

This is absolutely correct. 13+ yrs, so many certs I've lost count, AS in programming, BS in IT Sec, & MS in CyberSec and IA and I still haven't been able to land a cybersecurity role outside of the one that I occupy in the company that I created…

Scott

Dec 4, 2023

Which begs the question 

What if I told you... "begs the question" does not mean what you think it means?
http://begthequestion.info/
http://www.writersdigest.com/editor-blogs/questions-and-quandaries/grammar/begging-the-question-how-to-use-it-correctly
Bad English is a virus…

More from Ben Rothke

See all from Ben Rothke

Recommended from Medium

Lists

Stories to Help You Live Better

22 stories3693 saves

ChatGPT prompts

51 stories2606 saves
A phone with a tweet on it describing a deepfake video of the Ukrainian president, with a labeled fake image in the background

AI Regulation

6 stories702 saves

Business 101

25 stories1378 saves
See more recommendations

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams