When the Bots Start Doing Billy’s Job (Part 2)

Written by:  William White, CISSP

Chief Technology Officer, Ultimate Risk Services

(This is part 2 in our AI vs AI series)

Get Your CISSP, Stay Employed

Why Getting Your CISSP Might Be the Best Way to Stay Employed in the Age of AI

There’s a quiet anxiety humming beneath office chatter these days. It sounds like: “Is a machine going to take my job?” Or, more specifically: “Is a slightly smug chatbot going to take my job?”

It’s a fair question. AI is getting better at writing emails, analyzing data, generating code, and even pretending to understand your feelings during performance reviews. However, before you start updating your résumé for a career in artisanal candle making, there’s good news. Some roles are becoming more valuable, not less.

Enter the CISSP.

The Certified Information Systems Security Professional (CISSP) isn’t just a mouthful of a title. But, it’s one of the clearest signals that you understand how to protect the digital world from falling apart. And as it turns out, “preventing everything from falling apart” is a skill that’s remarkably hard to automate.

AI Is Smart. Attackers Are Creative. CISSPs Are Paid to Worry About Both.

AI excels at patterns. It can spot anomalies, flag suspicious activity, and automate responses at lightning speed. What it doesn’t do well (at least not yet) is think like a paranoid, sleep-deprived security professional who assumes everything is a potential breach.

That’s where CISSP-certified professionals shine.

They don’t just react to threats, they design systems that anticipate them. They think about governance, risk management, compliance, and the human tendency to click on things labeled “FREE GIFT CARD!!!”

AI might help identify a phishing email. A CISSP helps build the policies, training, and architecture that make phishing less effective in the first place.

Security Is a Human Problem Wearing a Technical Hat

One of the biggest misconceptions about cybersecurity is that it’s purely technical. Firewalls, encryption, intrusion detection. Sure, those are part of it. But the real challenge? People.

People reuse passwords. People fall for scams. People accidentally expose sensitive data because “it was easier this way.”

A CISSP-certified professional understands that security isn’t just about tools; it’s about behavior, incentives, and risk trade-offs. And navigating those messy, human factors is something AI still struggles with.

Try asking an AI to convince a senior executive to invest in a security initiative that won’t show ROI until after something bad happens. Exactly.

AI Needs Guardrails Too

Here’s the twist: AI itself is becoming a major security risk.

From data poisoning to model theft to unintended information leakage, AI systems introduce a whole new category of vulnerabilities. Organizations aren’t just worried about attackers anymore (they’re worried about their own AI behaving unpredictably).

Guess who gets called in to figure that out?

Not the AI.

CISSP professionals are increasingly involved in defining how AI systems are secured, governed, and audited. In other words, as AI grows, so does the need for people who understand how to control it.

It’s a bit like being a zookeeper, except the animals can write code and occasionally hallucinate.

Certifications Signal Something AI Can’t Fake (Yet)

Let’s be honest: AI can already pass some exams. It can generate passable essays and even help people cheat their way through online courses.

But the CISSP isn’t just about memorizing facts. It requires experience…years of it. It demands an understanding of real-world systems, trade-offs, and consequences.

Employers don’t just see a CISSP and think, “This person passed a test.” They think, “This person has been in the trenches.”

And “having been in the trenches” is still a very human credential.

The Job Isn’t Going Away…It’s Getting Bigger

Cybersecurity demand is exploding. Threats are increasing, regulations are tightening, and organizations are realizing that “we’ll deal with security later” is not a viable long-term strategy.

AI will absolutely change how security work is done. It will automate repetitive tasks, improve detection, and make teams more efficient.

But it won’t replace the need for people who:

  • Design security architectures

  • Make judgment calls under uncertainty

  • Balance risk, cost, and usability

  • Explain complex threats to non-technical stakeholders without causing panic

If anything, CISSP-certified professionals will find themselves managing AI tools rather than competing with them.

So… Is CISSP a Job Security Shield?

Nothing is completely future-proof. (If someone tells you otherwise, they’re either selling something or writing science fiction.)

But if you’re looking for a way to move away from easily automated work and toward high-value, judgment-heavy, risk-oriented roles, CISSP is a strong bet.

It positions you as someone who doesn’t just use technology—but understands how to protect, govern, and question it.

And in a world increasingly run by machines, the people who ask, “Should we be doing this?” are going to be just as important as the machines that say, “Here’s how.”

Final Thought

AI might take over repetitive tasks. It might even write a decent blog post. But it’s not losing sleep over your organization’s risk posture.

That’s still your job and with a CISSP, it’s a job that’s not going out of style anytime soon.

Subscriptions

Learn more