Training is not the underlying issue, there is plenty of ‘training’ available in certifications, degrees and similar. The issue is the cultural difference between people who have the passion and aptitude to push the fringe of destructive and sometimes illegal behavior and the need for people worthy of trust. The need for talented cybersecurity operatives is no secret. The military/law enforcement/intelligence/corporate security industries are out in full force recruiting, just go to a DefCon conference and you can visit any number of talks or meetings where these industry leaders are doing their best to connect. They are doing their best to make it easier for these talented and passionate technicians to be able to collaborate, but these agencies also want people that are willing to work within a bureaucracy which means ‘limits’ and qualify for security clearances in many cases, all of which are activities that can often time be foreign to the cyber security culture. Where training is an issue, it tends to be oriented towards providing a structure where it is not always welcomed or needed. Cyber Security is about finding and addressing vulnerabilities. There are plenty of people already performing the standard practices security checklists at their organization. Sure you want to cover the low hanging fruit but this is a starting place, not an end goal.