Re: Should Age Be a Barrier To Cybersecurity Educa...

cybrarian63

Hi, I'm new to this platform and currently enrolled in the ISC2.org One Million Certified in Cybersecurity Program. I plan to be certified by the end of January 2026. I'm a retired nurse, age 63, and this is my journey into the technology field. I still want to work in healthcare, just not at the bedside anymore.

I'm also enrolled in the Npower IT program in NC, where I completed the CompTIA Tech+ and CompTIA A+ Certification exams. (The A+ Core1 was very challenging for me, and I have to re-take the exam to pass)

My topic question came about because family and friends are questioning whether I am "late to the party".

In other words, they assume that this industry is just for the "young and nimble"; I say otherwise.

I know that ageism exists, the stereotypes about learning ability, and assumptions that older adults can't learn new tech. In reality, older adult learners often EXCEL with applied, contextual instruction. We already come with built-in discipline and focus. I personally spend about 4-6 hours a day studying, even on weekends!

I'm completing the Google Cybersecurity Professional Certificate as I write this, with only three modules left. I've already completed the Google IT Support course. I enjoy it all and am excited to learn something new and different at this stage of my life.

Age should NOT be a barrier to cybersecurity training; anyone aged 16-60+ (like me) can enter and thrive.

My grandchildren think I'm cool now. I can speak their language.

PS: I have a T-shirt that reads "Nana Knows CODE."

nkeaton

@cybrarian63 Age is definitely not a barrier. The comments that you are getting are from people that do not know cybersecurity. People think pentesters/ethical hackers and what the movies show as cool. That is not a profit center so very few hires and is only cool when not writing reports and other tasks. Coding is absolutely not needed. While I was a business application programmer and very good at it, I have done zero coding in cybersecurity as is not needed at my level of work. I have only been in it since 2008 with a heavy IT technical background before. Since you want to stay in healthcare, I would recommend reading ISC2's HCISPP CBK. While they no longer offer the certification, it does a nice job at tying cybersecurity and healthcare together. You might also look for local cybersecurity chapter meetings. I know that there are many people in the healthcare vertical in my local chapters. I am not in GRC (Governance Risk and Compliance), but I do assist them and is a possible avenue as well.

@emb021 Healthcare is definitely not my vertical. I can speak to HIPAA and HITECH a little but know that you could tie into that better in the field.

emb021

What @nkeaton said.

Cybersecurity is a wide field and there are many who are doing a lot of technical stuff, and people doing very little. I have a bachelors and masters degree in computer science, but my career has been as a systems administrator and now in cybersecurity and I've done VERY little coding.

As @nkeaton noted, we need more people in healthcare that understand cybersecurity, what with the requirements of HIPAA/HITECH. I used to do a LOT of HIPAA risk assessments and training, and am still in the healthcare space. This knowledge is still needed. Some people forget that GRC (governance, risk, and compliance) is a part of cybersecurity.

---
Michael Brown, CISSP, HCISPP, CISA, CISM, CGEIT, CRISC, CDPSE, GSLC, GSTRT, GLEG, GSNA, CIST, CIGE, ISSA Fellow

Should Age Be a Barrier To Cybersecurity Education or Work?