Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
New Data Finds Women Still Only 10% Of Security Workforce
Threaded  |  Newest First  |  Oldest First
RyanSepe
100%
0%
RyanSepe,
User Rank: Ninja
9/28/2015 | 11:18:50 AM
Global Disparity
There is a global disparity in all industries. InfoSec, Nursing, Teaching, Finance, etc. It will never be 50/50. I still don't understand the need for 50/50 when it comes to representation of gender in the job market. I am not offended in any which way that women are more heavily represented in governance. This needs to be looked at more on a statistical basis rather than metrics that require change/action items. We need to look at this more holistically. Male or female, everyone is a person and as long as you are treated with respect and not prohibited from achieving your goals I do not see an issue.
folkertschmidt
100%
0%
folkertschmidt,
User Rank: Apprentice
9/28/2015 | 2:34:09 PM
Re: Global Disparity
Ryan

 

I agree: no field of endeavor has ever been equally represented by gender, race or religion in accord with population percentages. It is absurd to try to change what will be changed and need not be changed.

Should the NBA recurit more white men?

Should women demand parity in the garbage collection workforce?

Should more non-jews hold leadership positions in the film and finance industries?

Should there be fewer German generals in the military?

Should the security industry's GRC sector recruit more men?


And on and on.

 

Folkert Schmidt

 

 
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
9/29/2015 | 10:50:46 AM
Re: Global Disparity
I think this starts with education, we should provide more reasons to attract female students to technical branches. That is where we start failing.
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
9/29/2015 | 12:23:20 PM
Re: Global Disparity
The question is...is it social fabric or interest? Are women being detracted from these positions because of they way they deem they will be seen(societal views) or do the majority not have an interest and would prefer to pursue other fields? My thoughts are the latter.


I would hope that no one is steered away from a field due to a reason such as gender, race, ethinicity, etc.

It is a case by case basis, not an appeal to the masses campaign as everyone has different interests. As I said before I think that trying to close the disparity is not the right idea. What happens if you were to reach the goal of closing the gap or even eclipse the gap...do you then reverse your track and deter those you helped to close the reverse disparity. Its a never ending cycle.


Like I said before, if you are not prohibited from a field and are treated with respect it is not an issue.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
9/29/2015 | 10:52:49 AM
Re: Global Disparity
I agree, however when you start paying attention what gender goes with what role better that is where diversity goes away. Everybody should get opportunity in all roles in my view.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
9/29/2015 | 10:48:47 AM
Re: Global Disparity
Agree, they may be high on governance but they are low in there rest of areas so they could not make any impact in IT.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
9/29/2015 | 10:54:51 AM
Re: Global Disparity
Agree. 50/50 is not achievable. There will always be some people do not like certain types of roles. This should happen in a natural way, 50/50 sounds like we somehow arranged it which is not practice. :--))
KeithG863
50%
50%
KeithG863,
User Rank: Apprentice
9/29/2015 | 9:39:36 AM
Not seeing this "Problem" in the real world.
This is mentioning that it is a problem that there are not more women in the Security field. But from what I have seen working in a few SOCs in the public and Private sectors for many years is that they hire the PERSON who can answer the technical interview questions the best. I do not see any bias towards any race nor sex, simply "can this person perform the job duties?"

Most women have no interest in this type of work. The only way it will increase is if somehow women take more of an interest in the field. Half of the women I know who have been in the field have left for other positions they are more comfortable with. Several I have seen have done well in the field but wanted a more social type of a job and moved into positions such as account managers. For the ones that moved into positions like that they had some great experience with some technical background and did very well with that background in their new positions. The other half of the women were really into learning more and more about Network Security and have done very well in the field and I have seen no restrictions ever put on women that are not on men as well.

I believe, from my expereince, the only problem is that most women are just not interested in the field and nothing more than that. If a female wants to get into the field there is nothing stopping them that would not also stop a male (of course there are some jerks who are sexists, but there are always exceptions and those often end up in the news nowadays).
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
9/29/2015 | 10:46:49 AM
This number sounds high
Where are these women in security? I do not see any in whole IT? I am not sure source of these numbers and they may very well be correct but it seems 10% is high to me.


HackerOne Drops Mobile Voting App Vendor Voatz
Dark Reading Staff 3/30/2020
Limited-Time Free Offers to Secure the Enterprise Amid COVID-19
Curtis Franklin Jr., Senior Editor at Dark Reading,  3/31/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
State of Cybersecurity Incident Response
State of Cybersecurity Incident Response
Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-5347
PUBLISHED: 2020-04-04
Dell EMC Isilon OneFS versions 8.2.2 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing other SmartConnect DNS responses.
CVE-2020-5348
PUBLISHED: 2020-04-04
Dell Latitude 7202 Rugged Tablet BIOS versions prior to A28 contain a UAF vulnerability in EFI_BOOT_SERVICES in system management mode. A local unauthenticated attacker may exploit this vulnerability by overwriting the EFI_BOOT_SERVICES structure to execute arbitrary code in system management mode.
CVE-2020-8142
PUBLISHED: 2020-04-03
A security restriction bypass vulnerability has been discovered in Revive Adserver version < 5.0.5 by HackerOne user hoangn144. Revive Adserver, like many other applications, requires the logged in user to type the current password in order to change the e-mail address or the password. It was how...
CVE-2020-8143
PUBLISHED: 2020-04-03
An Open Redirect vulnerability was discovered in Revive Adserver version < 5.0.5 and reported by HackerOne user hoangn144. A remote attacker could trick logged-in users to open a specifically crafted link and have them redirected to any destination.The CSRF protection of the “/...
CVE-2020-8147
PUBLISHED: 2020-04-03
Flaw in input validation in npm package utils-extend version 1.0.8 and earlier may allow prototype pollution attack that may result in remote code execution or denial of service of applications using utils-extend.