'Cyber gurus': a rhetorical analysis of the language of cybersecurity specialists and the implications for security policy and critical infrastructure protection

Kevin Quigley, Calvin Burns, Kristen Stallard

Research output: Contribution to journalArticle

14 Citations (Scopus)
94 Downloads (Pure)


This paper draws on the psychology of risk and "management guru" literature (Huczynski, 2006) to examine how cybersecurity risks are constructed and communicated by cybersecurity specialists. We conduct a rhetorical analysis of ten recent cybersecurity publications ranging from popular media to academic and technical articles. We find most cybersecurity specialists in the popular domain use management guru techniques and manipulate common cognitive limitations in order to over-dramatize and over-simplify cybersecurity risks to critical infrastructure (CI). We argue there is a role for government: to collect, validate and disseminate more data among owners and operators of CI; to adopt institutional arrangements with an eye to moderating exaggerated claims; to reframe the debate as one of trade-offs between threats and opportunities as opposed to one of survival; and, finally, to encourage education programs in order to stimulate a more informed debate over the longer term.
Original languageEnglish
Pages (from-to)108-117
Number of pages10
JournalGovernment Information Quarterly
Issue number2
Early online date26 Mar 2015
Publication statusPublished - 1 Apr 2015


  • cybersecurity
  • risk perception
  • availability heuristic
  • management gurus
  • rhetoric
  • critical infrastructure

Cite this