College Matters Very Little In Information Security

According to this article, those in information security with a bachelors degree get paid little (if any) more than those with just a high school diploma.

This doesn’t suprise me.

Many are saying that this means that college doesn’t matter — that it’s worthless, etc., but they’re way off. The problem is the quality of education. Overall, the standards for someone with a 4-year degree are way down from where they were 10 or 20 years ago. The difference between a high-school graduate and a college-educated person back then were quite significant.

Today, however, we have people graduating with Bachelors degress that can’t do basic multiplication and division in their heads, don’t have basic problem solving skills, and have a horrible grasp of English.

Because of this, there are a TON of people who only have high school under their belts that compare to or surpass those with these degrees.

But make no mistake — someone with a degree from Cal Tech, MIT, Carnegie Mellon, etc. is going to blow away all but the most talented high-school graduates.

Bottom line — don’t confuse most college education with a good college education. The first is essentially what high school should have been. The second is truly an exercise in how to expand one’s abilities.

As for information security, the reason there is so attention paid to whether or not you have a degree is because being successful in the field requires talent and intelligence. If you have these things you’ll go far. If you don’t, you won’t. Ultimately, certifications and degrees are peripheral to this fundamental rule.