How women are strengthening digital security through diverse thinking By: Alana Reich May 22, 2025 Estimated reading time: 5 minutes. Diversity as a cybersecurity asset In a world where the validity of diversity is unfortunately coming into question, it’s worth asking ourselves: What happens when we overlook inclusion? Well, in the context of cybersecurity, a field where innovation and adaptability are key, diverse perspectives could easily mean the difference between a massive security breach and successful defence. It’s no secret that teams with different skills and lived experiences ultimately create better outcomes, especially in today’s evolving threat landscape; however, it’s particularly interesting to look at diversity in cybersecurity from a gender perspective. According to a recent survey from ISC2, women make up only an average of 22% of global security teams. While encouraging women to become cybersecurity professionals is the obvious answer to increasing this statistic, how exactly can we go about doing that? Well, this article is certainly a start: keep on reading as we discuss the value and change that women bring to this exciting industry, how women are strengthening digital security and why inclusive teams lead to stronger digital defences. The power of diverse thinking in cyber defence Different life experiences With such an array of threats that exist, it’s important to consider how cybersecurity pros bring their own unique perspectives and biases when interpreting data, modelling threats, and assessing risk. For example, since women are more likely to experience online harassment than men, they may be more attuned to threats that disproportionately affect women, such as stalking or doxing. A team composed solely of men might not have the foresight to think of such threats, which is why ensuring gender diversity in cybersecurity is so crucial. Cognitive diversity With unpredictable, human-centred attacks, like social engineering, posing an enormous threat to vulnerable victims, it's also important to have cognitive diversity in cybersecurity: that is, hiring a range of individuals who differ in their approach to problem-solving and critical thinking. Since social engineering attacks often employ psychological manipulation and take advantage of victims’ emotions, it’s important to have people who can view potential threats through an empathetic and human lens, which is an asset that women often provide. Soft skills Another fundamental aspect of being a successful cybersecurity professional are soft skills, such as collaboration, empathy, and communication. These traits are ones that women are often known to exemplify the strongest, which is why having an inclusive cybersecurity team is such an asset. While soft skills are undervalued in tech, they are vital for building trust with different stakeholders, communicating complex concepts to non-technical employees, and bringing a human element of connection to an industry that is often seen as siloed and purely individualistic. Women leading the way: Notable voices & impact There are already so many examples of influential women making waves in cybersecurity. From CEOs and CISOs to researchers and ethical hackers, it’s important we take the time to recognize the impact that women are having in the industry. Last year, as part of our Navigator Series, Lighthouse Labs held a conversation with Penny Longman, now the Director of Security Assurance Services at Kyndrl, and Michaela Clouston, Senior Manager, Enterprise Security Education at BMO. Both Penny and Michaela are incredible examples of how women are disrupting outdated systems and addressing underrepresented threats. They are also strong advocates for hiring diverse talent. Interested in getting more insights from these two cybersecurity experts? Watch the full episode here. Industry challenges and the gender gap Although women like Penny and Michaela have found success in the industry, there are still many challenges to increasing diversity in cybersecurity and getting more women to join the field. For starters, there is a persistent underrepresentation of women in technical cybersecurity, as seen in the ISC2 statistic. So it’s a bit of a chicken and egg situation: there is only a small number of female cybersecurity experts out there, so it might not be appealing to prospective pros who see tech as a male-dominated space. There are, of course, many other barriers to entry that play a role as well: Bias and ‘gatekeeping’: With technical roles often perceived as overwhelmingly ‘masculine’, hiring managers may have a preference for male candidates (whether conscious or unconscious) to keep the ‘status quo’. Lack of mentorship and sponsorship: Junior-level women need the support of experienced role models in order to level up their careers. This can include both mentorship, referring to the idea of guidance and support, as well as sponsorship, which is actually creating opportunities and actively opening doors for women. Imposter syndrome: Women are also disproportionately affected by imposter syndrome, which is feeling like a ‘fraud’ or as if you do not belong. Even the most confident women can unfortunately experience these feelings, which can in turn discourage them from asking for promotions or applying for roles they are definitely qualified for. With these hurdles in mind, it’s incredibly important for organizations to prioritize inclusive hiring practices. There is an evident need for workplace cultures that value diverse input, as making decisions based on ‘cultural fit’ often creates a vicious cycle of maintaining things as they are (i.e. not hiring women as they are not represented as it is). What’s being done: Programs & progress Despite the challenges to increase the presence of women in cybersecurity, the good news is that there are many initiatives out there that are helping to drive progress in this feat. From WiCyS (Women in Cybersecurity) to Girls Who Code and Cybersafe Foundation, the list of organizations supporting women in tech continues to grow. Lighthouse Labs also supports a variety of initiatives for women, including different funding and partnerships. Beyond non-profit, there is also a great effort from the Canadian government and private sectors to recruit and retain more women in cybersecurity, including providing funding to programs like the Women CyberSecurity Society (WCS2). Finally, as noted earlier, there has been a rising emphasis on prioritizing sponsorship for women, not just mentorship. While a mentor can guide or coach women looking to join the field, a sponsor actively creates opportunities for junior women, which can include inviting them to networking events or connecting them with other cybersecurity experts. How to get started: Encouraging women to enter the field Although there is much work to be done from leadership and large organizations, women interested in cybersecurity also have the power to jumpstart their careers and take matters into their own hands. This can often look like leveraging learning resources and online bootcamps, including the Cybersecurity Bootcamp at Lighthouse Labs. Additionally, there are many community groups and events (both online and in-person) that exist to bring women together. From online forums to women-only events, having a strong support system can help women navigate breaking into an industry that can often feel intimidating. Whether you already have a technical background or you’re looking to make the pivot from an adjacent field, these resources can help you connect with women already in the field who can give you a better perspective on what it’s like to work in cybersecurity. Building a more resilient, inclusive future Cybersecurity is all about protecting people, but we should also focus on protecting the people working in the field internally! Organizations that view diverse thinking in defending digital systems as a core value are best positioned to succeed in the future, so we encourage companies and leaders of all kinds to prioritize inclusivity in cybersecurity hiring and promotion practices. Looking to kickstart your career in cybersecurity? Check out Lighthouse Labs’ Cybersecurity Bootcamp and read our curriculum today, or learn more about what’s next for women in tech.