Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Management & Strategy

Tapping into Diversity to More Effectively Mitigate Digital Risk

This October marks the 15th year of National Cybersecurity Awareness Month (NCSAM).

This October marks the 15th year of National Cybersecurity Awareness Month (NCSAM). The initiative is described as “a collaborative effort between government and industry to ensure every American has the resources they need to stay safer and more secure online.” As security professionals, we recognize that to more effectively defend against adversaries we must work together and collaborate across groups. But if we don’t take advantage of our true collective strength by embracing diversity and inclusion, we’re compromising our efforts. Inventor of the World Wide Web, Tim Burners-Lee said, “We need diversity of thought in the world to face the new challenges.” How well are we tapping into diversity of thought in the field of cybersecurity?

Although it may feel like we’ve been beating the diversity drum for a long time, the truth is we still have a long way to go. New research from Cybersecurity Ventures finds that women make up 20 percent of the global cybersecurity workforce. While up from the 11 percent number that has been widely quoted for years, 20 percent is still a far cry from where it should be, particularly considering women make up 40 percent of the overall workforce across 80 countries according to analysis by the Pew Research Center. The 2018 RSA Conference keynote conversation earlier this year was a well-publicized reminder of the lack of female representation in the industry. But there are less high-profile examples every day. Just last month a tweet went viral from a mother whose daughter was directed in school by a female teacher to sign up for the childcare class because the engineering class she wanted to enroll in was full of boys.

Clearly, increasing the number of women in cybersecurity isn’t as simple as turning a light switch on. That 20 percent reflects how we have grown up, the lessons we learned and thus the way we relate in the world to others. Meaningful change requires a true social evolution which doesn’t happen overnight. It will take time and will require that we all come forward to help. It’s the only way we will meet NCSAM’s goal to ensure everyone has the resources they need to stay safer online and overcome other challenges our industry faces.

To begin with, encouraging and supporting diversity and inclusion in the workforce will allow us to overcome the cybersecurity workforce gap now estimated to reach 1.8 million by 2022. We can’t afford to leave any potential workers out – not only women, but other groups as well. Blacks, Hispanics, and Asians reportedly represent less than 12 percent of the digital security workforce. By expanding to include neural diversity we can also tap into a group that has a 70% unemployment rate. It is only by incorporating all that we can unite our perspectives to best identify different opportunities for innovation.

Compounding the urgency, both the need for security expertise and our definition of that expertise will continue to expand as cybersecurity becomes more tightly woven into the very fabric of our daily lives. Virtually every organization is now digital to some degree with some aspect of their products or services online and thus vulnerable to attacks. Granted, we need more individuals with security expertise to help develop and manage solutions to protect these organizations. However, we also need more people with cybersecurity expertise participating on the business side of these organizations, driving strategy, risk, compliance and security awareness training.

Finally, diversity of thought has business benefits; organizations that are more diverse and inclusive stand to gain a competitive edge. Businesses with a more even distribution of men and women have seen up to a 41 percent increase in revenue. High-performing companies also have more women in leadership roles and those with more ethnically diverse executive teams are 33 percent more likely to outperform their peers on profitability.

NCSAM is a good time to strengthen the diversity drumbeat, but we must continue it over the long term to affect the level of change we need to more effectively mitigate digital risk and meet new challenges.

Written By

Alastair Paterson is the CEO and co-founder of Harmonic Security, enabling companies to adopt Generative AI without risk to their sensitive data. Prior to this he co-founded and was CEO of the cyber security company Digital Shadows from its inception in 2011 until its acquisition by ReliaQuest/KKR for $160m in July 2022. Alastair led the company to become an international, industry-recognised leader in threat intelligence and digital risk protection.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Understand how to go beyond effectively communicating new security strategies and recommendations.

Register

Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.

Register

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...

CISO Conversations

Joanna Burkey, CISO at HP, and Kevin Cross, CISO at Dell, discuss how the role of a CISO is different for a multinational corporation...

CISO Conversations

In this issue of CISO Conversations we talk to two CISOs about solving the CISO/CIO conflict by combining the roles under one person.

CISO Strategy

Security professionals understand the need for resilience in their company’s security posture, but often fail to build their own psychological resilience to stress.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

Cybersecurity Funding

2022 Cybersecurity Year in Review: Top news headlines and trends that impacted the security ecosystem