You remember a way different 90's than I do.
It was just simpler back then. There was no aslr, no hardware level protection from execution, traffic was all plaintext, switches didn't exist, or maybe they did but just nobody used them and everything on every network was just one giant collision domain, developers by and large didn't even think about securing software outside of DRM, and absolutely nobody understood the basic premise that someone on the phone may be lying to your business to get access to things they want.
The skillset that made you a 1337 h4x0r in the 90's makes you a mediocre sysadmin these days.
disagree. back then you were an autodydact.
i can get on YT or some AI and find how to do virtually all of the stuff you mentioned, but back then you had to roll your own and figure it out yourself
but i am generally in alignment with the idea that they're not getting gub'mnt jobs now. 1) how could you trust them? and 2) there is a global glut of talent, including laid-off FAANG / big-org talent that you could scoop up.
why take a risk with an idiot who can't keep his ego in check long enough to maintain OpSec when you can hire a senior security engineer just laid off from Oracle with an MIT pedigree? 30 years ago the 133t haxor types were rare, but now they're churning out cybersecurity grads to the point of oversaturation.