How we can use AI and organization to harness diversity and inclusion in cybersecurity

A group of women working, illustrating the importance of diversity in cybersecurity

Diversity needs to be boosted in the cybersecurity industry. Image: Christina/Unsplash

Lindiwe Matlali
Chief Executive Officer, Africa Teen Geeks
Our Impact
What's the World Economic Forum doing to accelerate action on Cybersecurity?
The Big Picture
Explore and monitor how Cybersecurity is affecting economies, industries and global issues
A hand holding a looking glass by a lake
Crowdsource Innovation
Get involved with our crowdsourced digital platform to deliver impact at scale
Stay up to date:


This article is part of: Annual Meeting on Cybersecurity
  • There is a profound underrepresentation of women and people of colour in cybersecurity.
  • But a diverse cybersecurity force is not just desirable, it's essential.
  • Embracing this comprehensive, evidence-backed approach can ensure that the cybersecurity realm is not only robust against threats, but is also a beacon of inclusivity and equity for all.

The evolving panorama of cybersecurity is seeing a massive shift as artificial intelligence (AI) tools become hackers' weapons of choice. Simultaneously, this shift shines a spotlight on a pressing concern in the field – the glaring lack of diversity.

Historical data exposes the profound underrepresentation of women and people of colour in cybersecurity. A 2019 report from (ISC)² found that women constituted only 24% of the cybersecurity workforce. By 2022, this figure rose to 30%, signifying progress but also emphasizing the existing disparity. However, a watershed moment presents itself.

The digitized arsenal of AI tools that hackers deploy calls for an equally multifaceted defence. As the adage goes, 'It takes a village.' In cybersecurity, it requires an ensemble of varied backgrounds, cognitive abilities and perspectives.


How is the Forum tackling global cybersecurity challenges?

Diversity's quintessential role in cybersecurity

With AI playing an increasingly dominant role in cyberattacks, it’s essential to restructure our defence strategies. Here's why a diverse cybersecurity force is not just desirable, but essential:

1. AI's evolution necessitates a varied defence

With hackers weaponizing AI, defending our digital realms requires a medley of unique insights and innovative problem-solving approaches that can only come from diverse teams.

2. Anticipating a spectrum of threats

A team that mirrors the multicultural milieu it defends is inherently better equipped to foresee and neutralize a vast range of cyber threats.

3. Redefining traditional norms

With the onset of AI-centric cyber warfare, there's an evident need to reevaluate existing paradigms. Fresh entrants, unencumbered by traditional methodologies, bring invaluable new perspectives.

Have you read?

An evidence-based approach

While training initiatives in organizations aim at fostering diversity, they're merely the tip of the iceberg. As argued by Ivuoma N. Onyeador, an assistant professor at the Kellogg School, training can be an initiation but not the culmination of diversity efforts.

Several fallacies pervade the current approaches:

• Sole reliance on implicit bias training often proves ineffective and might even reduce an individual's accountability.

• Organizations need to understand that merely advertising inclusivity doesn't equate to genuine inclusivity. A pledge for diversity should be manifested in actions, not just words.

• Metrics are indispensable. If an organization fails to measure the progress and impact of its diversity programmes, it essentially sails without a compass.

• Accepting the challenge. Building a truly diverse organization is undeniably challenging. Yet, the very essence of growth lies in embracing and surmounting challenges.

Accountability and measurement

Building upon a 2006 study, the most effective route to managerial diversity is institutionalizing accountability. Whether it's the introduction of a chief diversity officer or attaching diversity metrics to bonuses, ensuring responsibility is paramount. After all, a goal without accountability is merely a wish.

The road ahead: the confluence of AI and inclusive initiatives

To thrive in this age of digital upheaval, a multi-pronged approach is paramount. This necessitates:

Education and training

More than generic courses, we need tailored programmes that cater to marginalized communities, offering them scholarships, internships and specialized training.

Revamping recruitment

Blind recruitment, a process that ensures hiring devoid of biases, is a potent tool in this regard. Moreover, establishing an organizational responsibility for diversity can provide a more systematic framework for inclusive recruitment. A study published in the Harvard Business Review highlighted that blind recruitment led to a 5-10% increase in the hiring of women and underrepresented minorities.

Mentorship and networking

While mentorship integrates newcomers into the fold, networking events focusing on women and minorities can amplify community building and knowledge exchange.

A feedback loop

Instituting a feedback mechanism can help organizations identify the lacunas in their diversity programmes, refine them and consistently evolve.

Diversity as an organizational goal

By tying measurable outcomes, such as bonuses, to diversity metrics, organizations can incentivize and achieve tangible progress. Onyeador's sentiment is clear: "We would find the Black engineers. They're there." Measurement and accountability also stand out. As Onyeador highlights, often organizations embark on the journey of improving diversity without a clear road map or the tools to measure their progress. This lackadaisical approach stands in contrast to how these entities would approach other business objectives.

The AI-infused future of cybersecurity beckons a shift - not just in tools but in the very fabric of the industry. Diversity isn't merely a checkbox to tick, but a vital cornerstone. Embracing this comprehensive, evidence-backed approach can ensure that the cybersecurity realm is not only robust against threats, but also a beacon of inclusivity and equity for all.

Don't miss any update on this topic

Create a free account and access your personalized content collection with our latest publications and analyses.

Sign up for free

License and Republishing

World Economic Forum articles may be republished in accordance with the Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International Public License, and in accordance with our Terms of Use.

The views expressed in this article are those of the author alone and not the World Economic Forum.

Related topics:
CybersecurityJobs and the Future of Work
World Economic Forum logo
Global Agenda

The Agenda Weekly

A weekly update of the most important issues driving the global agenda

Subscribe today

You can unsubscribe at any time using the link in our emails. For more details, review our privacy policy.

Tinder Swindler: How 'romance fraud' became a multi-billion dollar cybercrime

Robin Pomeroy and Sophia Akram

May 24, 2024

About Us



Partners & Members

  • Join Us

Language Editions

Privacy Policy & Terms of Service

© 2024 World Economic Forum