Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security
Authentication
Mobile
Privacy
Compliance
Careers and People
Identity & Access Management
Security Monitoring
Advanced Threats
Insider Threats
Vulnerability Management
Comments
Women In Security: We've Still Got A Long Way To Go, Baby
Newest First  |  Oldest First  |  Threaded View
Page 1 / 2   >   >>
Sara Peters
Sara Peters,
 User Rank: Author
5/28/2014 | 2:47:27 PM
Re: Re : Women In Security: We've Still Got A Long Way To Go, Baby
@Kerstyn  Agreed! "if only we had all the answers and ability to fix it that would be peachy." I think really that the change is only going to happen if both men and women, boys and girls, help make it so. I just learned about a new non-profit aimed at getting more girls into STEM fields, but the group is for both girls AND BOYS. I think that's the right way to go. Instead of making boys feel excluded or girls feel separate, it's better to get them both working together so that they both feel that being different genders is no big deal.

I'll share more about them when I know more.
Kerstyn Clover
Kerstyn Clover,
 User Rank: Moderator
5/28/2014 | 9:39:32 AM
Re: Re : Women In Security: We've Still Got A Long Way To Go, Baby
All this talk about guts and asking for things made me think of a spoken word piece I've seen by Lily Myers. Relevant portion: "I asked five questions in genetics class today and all of them started with the word 'sorry.'"

 

Sara, I think you brought up a lot of excellent points here and I appreciate that you backed them with some great references. I'll have to read through a couple I hadn't seen yet. Of course I also appreciate the shout-out; I think we've both honed in on the same issue. Now, if only we had all the answers and ability to fix it that would be peachy.
Kerstyn Clover
Kerstyn Clover,
 User Rank: Moderator
5/28/2014 | 8:59:29 AM
Re: No problem
| When women don't enter IT (or other male dominated industries), they aren't always simply choosing to not enter the field.

 

Yes! This hits the nail on the head in my opinion. I've always based my judgment on the idea of women being interested (or not) in these fields on talking to young women, my experiences, and the environments. I feel like there are a lot of people who base their assessments of women's interests only on the idea of "if they were interested they'd work in it, if not they wouldn't, there are few women here and therefore few women are interested in the topic". I think that misses a lot of complex socioeconomic factors which can be hard to put a finger on.
RyanSepe
RyanSepe,
 User Rank: Ninja
5/27/2014 | 12:51:45 PM
Re: No problem
@SaraPeters.

I very much agree with you Sara, as I said earlier no one should be detracted from a field they wish to pursue. 

What are somethings that could be done for women so that they stay in said career path?
Sadie!
Sadie!,
 User Rank: Apprentice
5/27/2014 | 12:47:41 PM
Re: No problem
When women don't enter IT (or other male dominated industries), they aren't always simply choosing to not enter the field. Many girls grow up showing interests in STEM fields, but are discouraged from pursuing those interests directly or indirectly. When I was in high school I was interested in computer science, but never joined the computer club because I was intimidated by the all boy group. (I did end up pursuing my interests in college.) On the other side of your argument are professions like elementary teaching and nursing. I bet there are boys who are interested in these professions, but are encouraged to pursue more typically male jobs. Why was it so hilarious in the movie 'Meet the Parents' that Greg is a nurse?

This is an old video, recently passed around on the internet via upworthy (I know, yuck), but still relevant:
https://www.youtube.com/watch?feature=player_embedded&v=035lOhkNbkM
Sara Peters
Sara Peters,
 User Rank: Author
5/27/2014 | 10:23:55 AM
Re: FOSS and Women
@christianabryant  Thank you for the info and for being such a responsible dad to daughters! Hopefully they'll find the same supportive environment in the IT world as they get older.
Sara Peters
Sara Peters,
 User Rank: Author
5/27/2014 | 10:07:30 AM
Re: Re : Women In Security: We've Still Got A Long Way To Go, Baby
@SachinEE @Marilyn   Well it might be a problem with a lack of guts. But I can tell you that the time I asked for the promotion but not the raise was because I knew the better title would help me do a better job (because people were more likely to return my phone calls), but I also knew that the company was struggling a bit financially and I didn't want to a) hurt the company, or b) have them immediately reject my request for a promotion.

So, I guess it was partly a lack of confidence and partly a willingness to sacrifice a little something for the sake of the company. I think both of those things are rather common among women.

Regardless... I should have at least asked for the raise, even if I was willing to take the promotion without the money if they said they couldn't afford it. It's silly that I didn't do it.


 
Sara Peters
Sara Peters,
 User Rank: Author
5/27/2014 | 10:00:47 AM
Re: No problem
@RyanSepe  Well, I agree with you that aiming for a 50/50 split is pointless, but I don't think that's really what anybody's goal is. Certain fields attract more women, others attract more men, and there's nothing wrong with that. The trouble is when someone is attracted to a field that then rejects them.

What concerns me is that maybe the split would be 20:80, if half the women who left the field after a year decided to stay instead.
Marilyn Cohodas
Marilyn Cohodas,
 User Rank: Strategist
5/27/2014 | 9:57:54 AM
Re: Re : Women In Security: We've Still Got A Long Way To Go, Baby
@SachinEE Knowing Sara, I'm sure she has the guts to ask for a raise. And as the daughter of an assertive working mother and the mother of an assertive (when she wants to be) daughter I totally agree that being proactive is an important strategy for women who want to achieve pay parity and recognization in security-- along with many other fields.

While I can't speak directly about women in security, after 30-plus years in the workforce, I've seen plenty of examples of "exclusionary macho culture and a lack of executive sponsorship" as mentioned in the article. We all have to play a role in elimiinating that bias.
SachinEE
SachinEE,
 User Rank: Apprentice
5/26/2014 | 12:44:42 PM
Re : Women In Security: We've Still Got A Long Way To Go, Baby
In order to be taken seriously by men a woman should show she has the guts to face up to challenges brought out in a work place. Sara when you asked for a promotion, you should have just come out and said you want a pay rise too. Why did he give you the promotion if he didn't think you are not qualified to get the promotion? It just needs guts.
Page 1 / 2   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The 10 Most Impactful Types of Vulnerabilities for Enterprises Today
Managing system vulnerabilities is one of the old est - and most frustrating - security challenges that enterprise defenders face. Every software application and hardware device ships with intrinsic flaws - flaws that, if critical enough, attackers can exploit from anywhere in the world. It's crucial that defenders take stock of what areas of the tech stack have the most emerging, and critical, vulnerabilities they must manage. It's not just zero day vulnerabilities. Consider that CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilitlies in widely used applications that are "actively exploited," and most of them are flaws that were discovered several years ago and have been fixed. There are also emerging vulnerabilities in 5G networks, cloud infrastructure, Edge applications, and firmwares to consider.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-1172
PUBLISHED: 2023-03-17
The Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the full name value in versions up to, and including, 21.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that w...
CVE-2023-1469
PUBLISHED: 2023-03-17
The WP Express Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘pec_coupon[code]’ parameter in versions up to, and including, 2.2.8 due to insufficient input sanitization and output escaping. This makes it possible for authenti...
CVE-2023-1466
PUBLISHED: 2023-03-17
A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as critical. This issue affects the function view_student of the file admin/?page=students/view_student. The manipulation of the argument id with the input 3' AND (SELECT 2100 FROM (SELECT(...
CVE-2023-1467
PUBLISHED: 2023-03-17
A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file Master.php?f=delete_img of the component POST Parameter Handler. The manipulation of the argument path with the input C%3A%2Ffoo.txt le...
CVE-2023-1468
PUBLISHED: 2023-03-17
A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/?page=reports&date_from=2023-02-17&date_to=2023-03-17 of the component Report Handler. The manipula...