How to Secure the World (in 600 words or less)

Imagine trying to describe a data breach, outline its root causes, explain its impact on business continuity, and propose mitigation strategies, all within 600 words. What emerges is often an emaciated explanation, lacking nuances readers desperately need, and I believe, details necessary to understand the entire incident end-to-end.

Writing about cybersecurity, technology, or any complex domain is rarely a matter of casual brevity. Yet, time and time again, authors (including myself) find themselves forced to compress complex but nuanced topics into the rigid confines of a 600-word byline.

The restriction isn’t arbitrary. Online publishers may enforce it for consistency, readability, to keep production costs down, increase consumption, maximize ad impressions, and potentially a host of other reasons. However, for this essayist, particularly one tasked with explaining layered risks or emerging technologies for people who may play an important role in their enterprise’s defense, the 600-word limit often feels less like a guide and more like handcuffs.

Cutting word count for some complex topics (identity security, artificial intelligence / agentic AI security, and privileged access management (PAM) come to mind) can feel uncomfortably similar to cutting corners in security.

Each discipline or other topic comes with its own diverse set of risks, practices, and implications. To adequately explore them requires a narrative that incorporates multiple journalistic best practices, such as providing important background info and context, detailing current challenges, offering best practices and recommendations, etc.

When writing within the confines of a 600-word ceiling, oversimplification often translates into the sacrifice of highly important context or insights. For the audience, the effect may seem similar to cheap, fast food that provides a taste, but lacks the dimension, depth, and satisfaction of something that may have taken more time and care to prepare.

As an author, I often face agonizing choices: omit critical context, strip away technical detail, or oversimplify to the point of broad coverage strokes. Unlike a long prose book (and yes, I have written several), where brevity serves as a vehicle for persuasion, educational and analytical writing loses much of its impact when arbitrarily constrained by length.

To be fair, online publishers typically enforce these limits for reasons important to their business model. Readers scroll quickly and jump from article to article, sampling a bit of many of them. Some of these articles may engage them enough to warrant deeper investigation. However, this deeper exploration will likely take them away from the media site and back to their favorite search engine or, increasingly, AI answer engine.

When a reader is only casually interested in a topic, analytics tend to show that, after two to three minutes of reading (or much less), they move on, unless something meaningful is gained. Word count restrictions can both ensure consistent formatting and discourage run-on essays that may deter an executive (such as one with a heavy schedule who is just trying to cram in some learning and get a whiff of what’s new in the brief, fleeting moments between one meeting ending and another one kicking off) or casual reader.

All that said, the opposition between editorial driving forces and business model creates tension. I believe an author’s responsibility is to inform accurately, and with enough depth, to provide value. When legitimate information and an advertising-fed business model create friction, frustration brews. The reader (ironically, the intended beneficiary) receives a watered down version of the topic.

Writing to 600 words demands ruthless prioritization, something I focus on in business each day. Authors must learn how to triage ideas:

• What is essential and what can be cut?
• What background must be assumed as already known?
• What recommendations can be made, without a dilution of content?

This process can feel hollow, removing content that strengthens an argument. Supporting statistics case studies, and historical context are often the first casualties of short article word counts. In fact, many publications restrict legitimate references (such as for reports / studies, and historical context) and will prohibit, or severely restrict, linking to third-party websites.

And yet, omission carries risk. Without adequate details, readers may draw the wrong conclusions. A technical audience might accuse the author of being an imposter, or a business audience might underestimate the severity of a risk. The act of fitting into a word box creates blind spots of what thoughtful communications should achieve.

The 600-word limit is representative of a larger issue. The collision between the complexity of modern problems and the potential shrinking patience of modern audiences. Attention spans today are said to be on the decline, due to such things as social media and the proliferation of various screens. Cybersecurity, artificial intelligence, and regulatory compliance are not X (twitter) length issues for 280 characters or 30 second vignettes. They demand explanations, background, context, risks, and mitigation strategies. We aren’t talking about college level courses, but rather material that needs to be explored by anyone to understand a topic and postulate their own opinion.

As an author, this frustration is not ego-driven, but rather mission-driven. My goal over the multiple decades of my career has always been to inform, educate, and prepare professionals for the decisions they may face. When constrained to a word count that truncates insight, my reluctance and fear is not about personal limitation, but about failing the reader.