In a rapidly shifting digital landscape, 2025 is shaping up to be a defining year for artificial intelligence (AI) and cybersecurity. Keatron Evans, Vice President of AI Strategy at Infosec Institute, recently shared insights that highlight how tech professionals must evolve to stay relevant in the face of increasingly complex challenges.
The Push for AI Fluency
“People that are serious about maintaining an edge in cyber need to get themselves closer to the technology, not just the consumer usage of it,” Evans emphasized. His prediction that the coming year will focus on understanding AI's underlying technologies reflects a broader trend: simply knowing how to use AI tools won't cut it anymore. Professionals will need to dive deeper into the mechanisms that drive these systems—machine learning models, data processing pipelines, and algorithmic bias mitigation—to differentiate themselves.
Industry hiring trends support Evans’ viewpoint. Companies are starting to favor candidates who can bridge the gap between AI's theoretical underpinnings and practical applications. The narrative is clear: those who understand AI from the ground up will be “exponentially more valuable,” as Evans succinctly put it.
Skills Gaps Aren't Just for Beginners
While much of the cybersecurity conversation tends to focus on the shortage of entry-level talent, Evans highlighted a less discussed but equally pressing issue: a lack of experienced professionals. “When we talk about cybersecurity skills gaps, one of the misstatements that people often make is they will attribute that gap to all entry-level roles. However, industry-wide, we have realized that some of the biggest gaps fall under the need for experienced talent with a few years of work under their belts.”
The paradox is striking. Many organizations are scrambling to find mid- to senior-level experts, but most qualified candidates are already settled in roles they’re happy with. This stagnation complicates efforts to fill critical positions, leaving companies with few options but to rethink their hiring and retention strategies.
Hands-On Learning Takes Center Stage
One promising solution, according to Evans, is the adoption of immersive learning methods.
“We’re likely to see an increase in hands-on, verifiable skills as well as the growth in popularity of immersive learning,” he noted. The days of passive training modules may soon be numbered, replaced by realistic simulations and gamified training environments where workers can practice responding to live threats.
This shift aligns with broader trends in professional development, where "learn by doing" is becoming the gold standard. Cyber ranges, virtual labs, and AI-powered training platforms are no longer nice-to-haves but essential tools for building competence. For organizations, these methods also serve as a way to foster loyalty among employees by offering clear paths for upskilling and reskilling.
The Credentials Conundrum
Adding to the complexity is the ongoing debate over the value of degrees versus certifications. Evans hinted at this tension, suggesting that rigid requirements often hinder progress. In cybersecurity and AI, where real-world experience often outweighs formal education, overly strict credentialing standards could be driving away promising talent.
Some companies are starting to adapt, de-emphasizing four-year degrees in favor of specialized certifications or project portfolios. However, whether this trend will gain enough traction to close the skills gap remains to be seen.
2025 and Beyond
As organizations prepare for 2025, one takeaway from Evans’ insights stands out: adaptability is everything. Cybersecurity and AI professionals who invest in deeper technical knowledge, while also embracing hands-on learning opportunities, will set themselves apart in an increasingly competitive landscape.
For companies, the message is equally clear. Retaining top talent will require not just better salaries but also robust training programs and flexible career paths. The stakes are high, but the opportunity to reshape how we approach AI and cybersecurity skills development could set the tone for the industry’s next decade.
The race is on—not just to innovate but to educate. Will 2025 be the year tech professionals rise to meet the challenge? All signs point to yes.