Thanks for asking about this! Our team recently published an article on the study methodology on the (ISC)2 blog about this. You can find the entire article here, but below is the part that helps to shed some light on the number.
What Does the Gap Mean?
Our research does not propose there are 2.93 million cybersecurity job postings open right now. The(ISC)² Cybersecurity Workforce Studygap is an assessment of the demand for skilled cyber professionals based on the input from the cybersecurity workforce on the front lines every day. But what does this actually mean to the workforce?
Globally 37% of professionals stated the lack of skilled/experienced cybersecurity personnel was their top job concern. Additionally, 63% of respondents said their organizations have a shortage of staff dedicated to cybersecurity, and 60% said their organizations were at a moderate or extreme risk of cyberattacks due to that shortage.
Our industry is painfully aware of the challenges that organizations face when staffing qualified cyber teams, and the purpose of finding and sharing the gap is not to shout that the sky is falling, but rather build awareness of the need for talent and training, and advocate for solutions that will benefit the workforce, and to ultimately inspire a safe and secure cyber world.
> SamanthaO_isc2 (Community Manager) posted a new reply in Career on 10-24-2018 03:10 PM in the (ISC)Â² Community :
> Globally 37% of professionals stated the > lack of skilled/experienced cybersecurity personnel was their top job > concern. Additionally, 63% of respondents said their organizations have a > shortage of staff dedicated to cybersecurity, and 60% said their > organizations were at a moderate or extreme risk of cyberattacks due to that > shortage.
So, basically this "3 million missing jobs" figure is the result of an opinion poll?
Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413
This message may or may not be governed by the terms of http://www.noticebored.com/html/cisspforumfaq.html#Friday or https://blogs.securiteam.com/index.php/archives/1468