The cybersecurity industry is facing two major challenges as cyber threats get more serious: a shortage of skilled workers to defend against these attacks and a noticeable underrepresentation of women in the field, underscoring the critical need for diversity and skill development. This research explores variations in cybersecurity learning based on gender using the frameworks of self-determination and social cognitive theories. Conducted over two years, the research utilized a Capture The Flag (CTF) platform to facilitate learning and assess outcomes. This study explores the gender disparities in key areas such as intrinsic and extrinsic motivation, self-efficacy, conceptual grasp, and performance across five distinct cybersecurity subdomains: web exploitation, cryptography, cyber forensics, binary exploitation, and reverse engineering. The comprehensive evaluation included participant interaction with learning materials, their adeptness in practical exercises, and their achievements in a comprehensive contest covering five essential cross-domain cybersecurity concepts. Pre- and post-study surveys were instrumental in tracking shifts in motivation and self-efficacy levels. Findings pointed to notable gender-based differences in motivational aspects and self-belief following the learning phase, with conceptual understanding and the ability to replicate challenges also varying significantly between genders, highlighting disparities in educational outcomes. Domain-based analysis reveals notable gender differences: male participants excelled in solving reverse engineering and cryptography problems, whereas female participants performed better in cyber forensics and web exploitation challenges. These findings underscore the importance of tailored educational strategies in cybersecurity training to bridge the gender gap and foster a more diverse and capable workforce, addressing both the skill shortage and the need for broader representation in the field.
Read full abstract