Diversity In the Future of Tech and Cybersecurity

The importance of recruiting and retaining diverse talent
Blog Post
March 9, 2016

“Diversity is the one true thing we all have in common. Celebrate it every day.” — Author Unknown

I completed four computer science internships during undergrad in four varied locations: Texas, New York, Silicon Valley, and Germany. Although the places were very different and in distant corners of the world, the gender and ethnic disparities were the same. In two of the positions, I was the only female on the team. In the other two, I was the only black person in the room. These experiences, coupled with similar experiences from my undergraduate years, left me with a slight hint of alienation in and from the tech world.

Still, these experiences taught me an important lesson: a lack of diversity and inclusion in the information security field is one of the foremost impediments to attracting and retaining diverse talent which the industry sorely needs. Since cybersecurity is one of the biggest challenges to our nation’s security and we’re facing a major talent shortfall in the industry, figuring out how make everyone feel welcome and included is important. This is an issue that when addressed continuously will propel the industry into the future. In order to do that, it’s important to highlight the positive impact of diversity outreach. Here’s how it helped me.

My internship in Silicon Valley was my introduction to computer security. I stumbled upon the research opportunity through an extensive Google search and after applying, I was accepted. This research program I participated in was specifically developed to increase the level of diversity among students entering into tech-related graduate programs. Through the internship, I was introduced to the world of cybersecurity — a world that I found fascinating. I learned about the vast scope of security research and how many industries it touches and afterwards, I decided to pursue graduate studies within the field.

When I arrived for my first day of graduate study in Information Security, I scanned the cohort of new students only to recognize a familiar pattern. Although I saw a more diverse set of individuals than I’d encountered as an undergrad, I noticed that I was still one of a handful of other women and minorities in the room. I also noticed around this time that there was a lack of role models in the Information Security industry and had only stumbled upon a few names of minorities or women in high-level executive positions. These realities can dilute your academic experience because it produces an unease with being different. However, there was a turning-point for me.

Near graduation, I attended a conference that transformed my attitude dramtically — the Grace Hopper Celebration of Women in Computing (GHC) where I participated in the Women of Color sessions. I spoke with others who’d experienced the same situations I had. I noticed that I was in a pool of diverse women all relishing in our abilities and celebrating our varied differences, but still able to appreciate each other’s backgrounds and collaborate smoothly as one. I met women who fearlessly walked in their differences with a light of poise that was electrifying. It changed me.

Happy Tech Worker

I left feeling refreshed. I began relishing in my differences. I began exploring cybersecurity topics online and creating things I found to be fun. I delved into topics I once thought were “out of my range.” I channeled my inner lion and challenged myself to speak up in uncomfortable situations. I realized how much I liked cybersecurity, how much of an art it can be, and how good I was at it. GHC and the Women of Color sessions gave me the sense of community I didn’t know that I needed. I didn’t feel like the different one. I felt like one of all the different ones, and it felt great. I found a supporting outlet that was encouraging.

Diversity outreach works — trust me, it’s how I got here. Now, I jump at opportunities to help younger girls and minorities like myself.

I’ve seen my direct benefit from environments of empowerment. Diversity outreach works — trust me, it’s how I got here. Now, I jump at opportunities to help younger girls and minorities like myself. I’m proud that through minority and women’s support organizations, I began to settle into the environments I found myself in and change them for the better. However, this positive change doesn’t happen for everyone. In many industries, this experience can be a root cause of mass exits. Even in 2016, minorities and women are not represented well in cybersecurity.

In my experience, cybersecurity doesn’t seem to be “marketed” towards minorities or women enough. It also isn’t pushed towards diverse academic backgrounds — just mainly computer science, which is a field that already lacks enough representation for women and people of color. That may be where this issue begins. I have a passion for helping attract a diverse talent into the field through outlets of support, so that everyone feels included. For a field that is so important to our societal stability, diversity is paramount in retaining talent and encouraging minorities and women to stay. I hope my story can encourage just that.


Ashley Tolbert is a recent Information Security graduate from Carnegie Mellon. She now works in the Bay Area in Cyber Security Operations. She will share her story at New America’s Cybersecurity for a New America conference in Washington, DC on March 9.

This post is part of Humans of Cybersecurity, a dedicated section on Context that celebrates stories of the people and ideas that are are changing our digital lives. It is part of New America’s Women in Cybersecurity Project, which seeks to dramatically increase the representation of women in the cybersecurity/information security field by fostering strategic partnerships with industry leaders, producing cutting-edge workforce research, and championing women’s voices in media. This is a project of New America’s broader Cybersecurity Initiative, which aims to clarify and connect the often disjointed debates and policies that surround the security of our networks.