National Cyber Security Centre
Diversity and inclusion in cyber security workforce revealed for the first time
NCSC vows to drive cross-sector improvement as joint report with KPMG reveals more to be done to improve experiences and opportunities.
- Joint report from NCSC and KPMG is the first analysis of diversity and inclusion within cyber security industry
- Decrypting Diversity report finds much more to be done in improving experiences and opportunities across the workforce
- NCSC and KPMG UK commit to taking action and urge collective effort across industry with seven recommendations
CYBER security chiefs have committed to lead a drive towards improving diversity and inclusion in the workforce after the publication of a major survey yesterday.
The National Cyber Security Centre (NCSC) – a part of GCHQ – and KPMG UK have jointly published the first annual Decrypting Diversity: Diversity and Inclusion in Cyber Security report, which sets a benchmark for improving the experiences and opportunities for existing and future staff working in the industry.
The report provided a mixed picture, revealing that in some areas minority representation was above average for the country but also highlighting discrimination and a lack of inclusivity across gender, sexual orientation, social mobility and ethnicity.
It found that there is more to be done by the industry and in addition to accepting all of the report’s recommendations the NCSC yesterday committed to publishing specific actions to improve diversity and inclusion within the organisation before the end of the year.
Ciaran Martin, Chief Executive of the NCSC, yesterday said:
“It cannot be right that in the year 2020 there are still people within our industry who feel they can’t be themselves or who face discrimination because of who they are and this report should drive our determination to act.
“There is far more to do on diversity and inclusion and the NCSC is determined to be a leader in this field, but a cross sector effort is required to get this right.
“I urge all cyber security leaders to read the report and act on it.”
The recommendations in the report – which are published on the NCSC website – urge cyber security leaders to become accountable for diversity and inclusion within their organisations and set up comprehensive analysis of data to understand and track representation within their workforce.
They also call for the industry to significantly improve how it learns from best practice both within the cyber security sector and other areas.
Bernard Brown, Partner and Vice Chair, KPMG UK, yesterday said:
“If the UK is to continue to play a leadership role in cyber security, we need to create an innovative and inclusive workplace that attracts the finest minds from our communities. Highly skilled cyber security specialists are an imperative in a rapidly expanding digital economy, supercharged by COVID-19.
“Our findings show that the cyber industry has a lot to do if it is to build truly inclusive workplaces. The report provides a route map for change and a call to action for a collective response to the issues raised.”
Amongst the report’s findings – which were collated based on responses from 1,252 cyber security professionals – were:
- Female representation in the industry is 31%
- LGB representation is higher than the UK average, with 10% of respondents identifying as lesbian, gay, or bisexual compared with 2.2% in the general population (ONS, 2020)
- The ethnic diversity of the workforce is broadly similar to that of the UK population
- 41% of Black, African, Caribbean or Black British feel confident in their identity within the workplace, compared to 75% of White respondents
- 14% of respondents experienced barriers to career progression and/or resigned because of their employer’s approach to diversity and inclusion issues
- 74% of negative incidents as a result of diversity and inclusion were not reported
The survey on which this report is based was launched in February 2020, and sought to benchmark gender, sexual orientation, social mobility and ethnicity data across the cyber security industry, as well understand issues around discrimination and inclusivity.
The next iteration of this survey will seek to capture the nuances and issues within disability and neurodiverse communities across the cyber security industry.
Original article link: https://www.ncsc.gov.uk/news/diversity-and-inclusion-in-cyber-security-workforce-revealed
Latest News from
National Cyber Security Centre
UK and allies expose Snake malware threat from Russian cyber actors10/05/2023 13:10:00
Snake malware and its variants have been a core component in Russian operations carried out by Centre 16 of Russia’s Federal Security Service (FSB).
UK and international partners publish joint guidance to help communities create secure smart cities21/04/2023 10:05:00
New guide, published during CYBERUK 2023, sets out cyber security best practices for creating connected places.
Peace process accelerated Northern Ireland's rise as global cyber security hub, UK cyber chief says21/04/2023 09:05:00
Northern Ireland continues to play a critical role in securing UK-wide online resilience 25 years after the pivotal accord was signed.
New analysis highlights strength of Ukraine's defence against “unprecedented” Russian offensive20/04/2023 15:10:00
Report from the European Cyber Conflict Research Initiative (ECCRI) gives new insights into the role of cyber criminals and political hacktivists in a conflict, and critical questions around industry support to Ukraine's cyber resilience.
UK and international partners share advice to help turn the dial on tech product security13/04/2023 16:15:00
New guide calls on manufacturers to ensure technology products are made secure by design and by default.
Business leaders urged to grip cyber risks with fresh support from experts30/03/2023 17:20:00
Refreshed guidance from the NCSC will support board members govern online risk.
NCSC launches flagship new services to help millions of small organisations stay safe online22/03/2023 14:20:00
New online tools for small organisations to help find and fix any cyber security issues.
International leaders to take centre stage at CYBERUK 2023 in Belfast15/03/2023 16:15:00
Top officials from the U.S., Canada, New Zealand and Singapore amongst speakers for CYBERUK 2023 announced yesterday.