Apologies for being unclear, to elaborate ... IMHO cyber-security analysts could do much better in defining how they do their job in order to give people that are interested a path forward in developing the needed skills. To be clear, I'm not talking about the larger cyber-security profession that is mostly focused on setting and enforcing rules.