New Tessian report reveals that perceptions around cybersecurity industry need to change to encourage more diversity
Increasing the number of women working in cybersecurity could boost the UK economy by £12.6 billion according to a new report from Tessian, the human layer security company. The report also reveals that closing the 24% gender pay gap in the UK cybersecurity industry, and equalizing women’s salaries to men’s, could add a further £4.4 billion to the UK economy.
Tessian highlights the importance of encouraging more women into cybersecurity and identifies the barriers stopping this from happening. After surveying female cybersecurity professionals in the UK and the US, Tessian reveals that a lack of gender balance was far less of a barrier to entry in the UK, compared to the US:
- 82% of female cybersecurity professionals in the US believe that cybersecurity has a gender bias problem versus 49% of those in the UK.
- Just 12% of UK respondents say a lack of gender balance was a challenge at the start of their career versus 38% of those in the US.
- US respondents were also three times as likely to believe that a more gender-balanced workforce would encourage more women to pursue roles in cybersecurity.
The report sought to identify which other factors were discouraging women from joining the UK cybersecurity industry, and found that:
- 47% of UK respondents think a cybersecurity skills gap exists because the industry isn’t considered ‘cool’ or ‘exciting’. This opinion was most commonly shared by millennials – 49% vs. 33% of 45-54 year olds.
- A lack of awareness or knowledge of the industry was the top challenge female professionals faced at the start of their career, with 53% citing this as a barrier.
- 45% of women said that a lack of clear career development paths was another challenge at the start of their cybersecurity career, while nearly a fifth (19%) cited a lack of role models.
- Just 37% of UK respondents say their organisation is doing enough to recruit women into security roles.
Sabrina Castiglione, senior executive at Tessian said, “For organisations to successfully recruit more women into security roles, they need to understand what’s discouraging them from signing up beyond just gender bias. We need to make women in cybersecurity more visible. We need to tell their stories and raise awareness of their roles and experiences. And once through the door, managers need to show these women the opportunities available to them to progress and develop their careers.”
When asked what would encourage more women to consider a career in cybersecurity, over half of UK respondents (53%) said there needs to be more accurate representations of the industry in the media. This was followed by the need for more cybersecurity specific curriculum at universities (49%) and apprenticeship programs (25%).
In the report, Tessian interviewed Shamla Naidoo, former CISO at IBM, who said, “To many people, cybersecurity equates to – and is limited to – someone in a hoodie bent over a keyboard in a dark room. That’s not the case at all. If we don’t expand beyond that, we’ll lose out on even more people in the industry.”
In addition to huge economic benefits, there are other rewards for women working in cybersecurity. 93% of the women surveyed in the report feel secure or very secure in their jobs, with over half (56%) believing that cybersecurity is one of the most important industries today as cyber threats become more advanced.
Castiglione added, “The future of cybersecurity needs diversity. 2019 was the worst year on record for data breaches, with 61% of organisations reporting a breach as a result of human error or malicious activity. With data breaches rising year on year, and with cyber threats continually evolving, we need different ideas and approaches to solving security problems if we are going to keep people and data safe.”
Read the full report and discover the stories of cybersecurity professionals at some of the world’s biggest organisations here: Opportunities in Cybersecurity 2020.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.