Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Career Intelligence
    • Cyber Tactics
    • Cybersecurity Education & Training
    • Leadership & Management
    • Security Talk
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Interactive Spotlight
    • Photo Galleries
    • Podcasts
    • Polls
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecurityCyber Tactics ColumnSecurity Enterprise ServicesSecurity Leadership and ManagementSecurity & Business ResilienceSecurity Education & Training

Cyber Tactics

Mind the gap: Diversity & other challenges in the age of AI

By John McClurg
SEC1220-Cyber-Feat-slide1_900px
SEC1220-Cyber-slide2_900px
SEC1220-cyber-slide3_900px
SEC1220-Cyber-Feat-slide1_900px
SEC1220-Cyber-slide2_900px
SEC1220-cyber-slide3_900px
December 1, 2020

A recent ISC² Cybersecurity Workforce Study placed the resource gap worldwide at 4.07 million professionals. The challenges we face when grappling with that gap are myriad and are exacerbated by the security paradigm to which we may have historically pledged allegiance. The dominant paradigm over the last two decades has been that of Reactive Detection. Much of its associated resource demands are the result of a “Defense in Depth Architecture,”— the result of a failure, high in the kill chain, on the part of signature-based anti-virus solutions which then necessitated the construction of elaborate downstream structures that were costly, complex, resource intensive and, ultimately, ineffective.

The arrival of artificial intelligence (AI) and machine-language-supported, proactively preventative solutions, with the levels of efficiency and effectiveness they bring with them, now mean that much of that downstream demand should dissipate, liberating resources which can now be applied to such critical areas as insider threat. To that end, the selection of those with the proper skills and abilities is evolving and will be a different activity, free of the General Attribution Error that has often characterized historic searches, and will tilt now more toward those who possess AI and data management skills.

Recognizing and attracting talent from this rising digital generation requires new partnerships and thinking. In addition to building awareness of this career field, offering more opportunities for internships and apprenticeships, and entry-level pathways for students’ post-education, we need to consider additional sources of talent and improve our ability to assess such talent.

All-Girl Cybersecurity Summer camps, such as those at Brigham Young University, are an example of recent efforts to think outside the conventional box when it comes future talent, mitigating historical instances of discrimination, and priming the pump when it comes to a group that has been historically under-represented in our cybersecurity ranks.

In their MBA curriculum, many business schools of America have begun to reflect an appreciation that security is no longer the exclusive purview of the “guns, gates, guards and geeks” over there, but a duty and responsibility owned by all. They appreciate that if they are sending out into the world our next class of business executives with that historically narrow view of security, they’ve positioned them to fail. Beyond that new baseline, some MBA programs are even offering Information Security as a specialization. At the end of the day, that means a certain level of training and awareness of the threats poised out there to strike at our collective interests must be had by all.

Measured in that manner, the “gap” may be even larger and reflected in terms that often go ignored except perhaps once a year during October’s National Cybersecurity Awareness Month. Overcoming that gap is a challenge of a different order and magnitude.

Another bright spot reflected in our efforts to address the skills gap is the number of college cybersecurity programs seeking the distinction of being named a National Center of Academic Excellence in Cybersecurity, a program managed by the National Cryptologic School at the National Security Agency. Federal Partners include the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the National Institute of Standards and Technology (NIST)/National Initiative on Cybersecurity Education (NICE), the National Science Foundation (NSF), the Department of Defense Office of the Chief Information Officer (DoD-CIO), and U.S. Cyber Command (CYBERCOM).

Finally, one of the functional areas hardest hit by the resource gap is our Security Operations Centers (SOC). The 24/7/365 nature of these centers make staffing a particular challenge. Having one’s talent poached is not an infrequent occurrence. One of the emerging and viable responses to that challenge has been to outsource security operations center (SOC) operations or to augment one’s force with a virtual CISO [vCISO]. Necessity once again proves to be the Mother of Invention. All these factors combine in a way that should give us hope in meeting the challenge of the future.

KEYWORDS: cyber security endpoint security information security risk management

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

John mcclurg

John McClurg served as Sr. Vice President, CISO and Ambassador-At-Large in BlackBerry's/Cylance’s Office of Security & Trust. McClurg previously was CSO at Dell; Vice President of Global Security at Honeywell International, Lucent Technologies/Bell Laboratories; and in the U.S. Intelligence Community, as a twice-decorated member of the Federal Bureau of Investigation.

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Cyber tech background

    Security’s Top Cybersecurity Leaders 2026

    Security magazine’s Top Cybersecurity Leaders 2026 award...
    Top Cybersecurity Leaders
  • Iintegration and use of emerging tools

    Future Proof Your Security Career with AI Skills

    AI’s evolution demands security leaders master...
    Security Leadership and Management
    By: Jerry J. Brennan and Joanne R. Pollock
  • The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report

    The 2025 Security Benchmark Report surveys enterprise...
    The Security Benchmark Report
    By: Rachelle Blair-Frasier
Manage My Account
  • Security Newsletter
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Popular Stories

Hand reaching up out of the ocean

What I Learned About Burnout the Hard Way (and How to Actually Fix it)

Officers at an event

The 2026 FIFA World Cup Will Test Security Operations Like Never Before

Colorful laptop

Organizations Think They Know Who’s Visiting Their Sites. They Don’t.

Paparazzi

When Private Events Become Public Infrastructure: What Celebrity OSINT Teaches Security Leaders

Glasses in front of coding on screen

5 Ways Quantum and AI Will Rewrite the Rules of Cyberattacks

Kaseware sponsored webinar
Schneider Electric sponsored webinar

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products


Alertmedia sponsored webinar

Related Articles

  • Cyber brain

    The fundamentals of cybersecurity in the age of AI

    See More
  • Human hand and robot hand

    AI vs AI: In the age of AI-driven attacks, only AI can keep up

    See More
  • Drawn lightbulb on cork board

    3 ways to safeguard identity and insurance in the age of AI

    See More

Related Products

See More Products
  • Physical Security and Safety: A Field Guide for the Practitioner

  • Risk Analysis and the Security Survey, 4th Edition

  • 9780367030407.jpg

    National Security, Personal Privacy and the Law

See More Products

Events

View AllSubmit An Event
  • June 3, 2026

    The Role of AI and Video in Measuring Health, Safety, and Security Standards

    ON DEMAND: OSHA fines grab headlines, but most compliance issues start with everyday operational gaps: missed protocols, unsecured areas, or slow response. Learn how emerging technologies & AI can be leveraged towards more proactive compliance.
  • April 15, 2026

    How AI is Closing the Decision Gap in Leading GSOCs

    ON DEMAND: Learn how modern security teams are evolving from alert-driven workflows to outcome-driven operations and how AI is enabling faster, more confident decisions at every stage of the incident response lifecycle.
View AllSubmit An Event
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • Newsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2026. All Rights Reserved BNP Media, Inc. and BNP Media II, LLC.

Design, CMS, Hosting & Web Development :: ePublishing