Let's address cybersecurity's gender disparity

Forrester addresses the gender gap in cybersecurity and how firms can tackle the issue.

Video: Women will lose more jobs to robots than men, says WEF report

Read this

Apple CEO Tim Cook 'not satisfied' with diversity numbers

In the US, 55 percent of Apple's workers are white, while 70 percent of workers globally are male.

Read More

The most infuriating advice I've received about succeeding in cybersecurity is to "have a thick skin" -- usually followed by, "Don't take him seriously. He doesn't even realize what he's saying."

These are not words of wisdom. They're a defense of predatory behavior that belittles the issues women face every day and normalizes sexual harassment.

I spoke with many women and allies in cybersecurity about best practices for achieving success in the industry. The women consistently brought up rampant sexism that they've experienced, ranging from more subtle comments like, "It's so great to see you in a dress!" to being directly propositioned by other coworkers, and everything else that falls in-between. All instances are awful, but the subtler examples are often categorized as 'not a big deal' or 'misinterpretations.'

Those categorizations are wrong. Harvard Business Review detailed an entire study showing how this subtle discrimination can be even more damaging than the more blatant cases. Subtle discrimination is linked to poor performance reviews, lower salaries, and fewer promotions.

Read also: Women in tech: Why Bulgaria and Romania are leading in software engineering

The women I spoke with mentioned that they were taught to manage, deflect, and defend against inappropriate behavior. These lessons brand sexism as uncontrollable and accidental male behavior that women must accommodate. This is the wrong approach.

Firms need to address issues of sexism head on to recruit and retain female employees. Your firm needs to take a hard look at its policies, procedures, and current culture to determine the unconscious and direct biases that are maintaining a toxic environment.

The industry is making enormous strides, but with women occupying only 11 percent of cybersecurity positions, the playing field is still not close to level. The industry needs to change its recruiting and retainment efforts to better the workplace for women and all employees as it fills the millions of open jobs.

--By Claire O'Malley, Researcher

For more on how to do this for your organization, check out our latest report, Best Practices: Recruiting And Retaining Women In Cybersecurity [subscription required]. With the changes underway from your GDPR preparations, you're going to need all the help you can get. Understand how each part of your organization is an important contributor to compliance by downloading this complimentary report.

Previous and related coverage

'There's a culture that works against women': Changing the face of tech startups

Paris-based social entrepreneur Chiara Condi aims to transform lives by helping more women create startups.

Workday: Female senior execs speak out on women in technology

SaaS vendor Workday employs four female C-level executives. Listen to their advice on promoting gender diversity and how women can get ahead.

International Women's Day: A plea to the infosec community

It's time for us to evolve, set aside the "booth babe" debate, and look at the real issues surrounding how we deal with each other in the workplace.