One week later and International Women’s Day is still fresh in our minds. There is still some way to go but every day that we challenge the stigma and bias that impact women in the workplace. Obrela Security Industries have launched a campaign to celebrate women in the cybersecurity industry. You can read their blog here

The persistent cyber skills shortage is getting worse. Despite gender representation generally improving over the past 5 years, there is still a significant lack of women entering and staying in the industry. With less than a quarter of C-level positions being filled by women, cyber organisations are susceptible to group think due to a homogenous workforce. And, ultimately, making unchallenged decisions can lead to less thorough security throughout an organisation making them weaker to vulnerabilities.


Why? Threat-actors are constantly evolving and growing in sophistication. If no new minds are employed to fill the skills gap within the sector, mistakes will be made and vulnerabilities overlooked. The threat-landscape continues to expand, and, as a result companies of all sizes, hospitals and schools continue to face the risk of being targeted and suffering immense damages.


The gender gap in cyber


Unfortunately, many people are still blind to the reality of the gender gap within the cybersecurity industry and don’t believe it is an issue. The main problem is not only that the industry is male-dominated but that it is perceived to be highly technical and, as such, only suited for men. This is exacerbated by the highly competitive nature that is often present within tech companies, which curates a negative and undesirable environment for women to thrive in. Women already often feel intimidated to join cybersecurity roles due to a lack of support and flexibility along with the negative stigma surrounding their place in the industry. What’s more is, job adverts typically use gender-coded words or phrases associated with gender stereotypes, that discourage women from applying from the get-go.


This gender gap is the result of women experiences little to no exposure to opportunities within the cybersecurity field. Highly technical career paths are mainly catered toward men in schools and universities and in some cases the perception that women don’t belong in the field persists, reducing the chances that young girls will choose to pursue their interest in anything technology related.


The pandemic


The Covid-19 pandemic only made the situation worse as job losses were 1.8 times higher for women than they were for men. Statistics from February 2021 showed that 5.4 million women lost their jobs in tech. This only emphasises that women are seen as more disposable in technical positions, when this couldn’t be further from the truth. It also fuelled the fire that positions in technology aren’t a safe and respectful environment for women to work in. As such, women have struggled to re-enter the field after taking losing their job, because the existing attitude hasn’t experienced a large enough shift.


International Woman’s Day: Breaking the Bias


The stigma that women can’t perform in male-dominated cyber or technology careers is down to a cultural bias. This view can be shifted with improved and increased education around what the industry can offer to women and how it can help them grow.


There are several things that organisations can do in order to bridge the gender gap in the industry, which will simultaneously improve their diversity of thought and overall security.



These are but a few straight-forward actions that organisations can take to make their organisation more inclusive to all genders, which in turn can strengthen their overall security posture.


The prevailing cultural bias needs to be eradicated from the bottom up. More education is needed to teach young students about the opportunities that can be found within the cyber community. Innovation cannot happen without diversity, and businesses must surround themselves with more diverse employees in order to encourage new and original ideas. Organisations must work toward eradicating unconscious bias by making conscious efforts to pick women as candidates for both positions in leadership and more technical fields. Ultimately, greater diversity will lead to more effective technology teams who can collaborate and challenge each other in order to outsmart evolving threat-actor techniques. This will work toward strengthening the cybersecurity culture within organisations and help protect them from looming threats.

The post A lack of diversity in cybersecurity puts organisations at risk appeared first on IT Security Guru.


You May Also Like

UK companies Omniscope and Searchlight Security team up to provide next-level threat intelligence

Two UK cybersecurity companies Searchlight Security, the provider of specialist deep and…

Warning over patching Active Directory takeover flaws

Customers of Microsoft are being cautioned to patch a couple of Active…

Ukraine calls for volunteer hackers to aid in cyber-war

Ukraine’s government has reportedly called for volunteers with hacking skills to aid…

A third of malware infections use Log4Shell

Researchers at Lacework have revealed that the Log4Shell vulnerability was exploited as…