To the organizers of the RSA Conference USA 2018:

We write in response to the publication of your keynote list for RSA Conference USA 2018 and to express our dismay at the near-total lack of diversity or appropriate representation. We hope that you will take immediate steps to remedy this.

Study after study has consistently demonstrated the power of a diverse, inclusive environment. Despite this, women and TGNC (transgender / gender-nonconforming) individuals have faced sexism and exclusion in the technology sector for years. Even though some companies are starting to issue diversity reports, large tech firms have yet to institute the right policies to reach better gender parity. And, as women have remained underrepresented in the workforce, they have also faced a constant barrage of discriminatory behavior. In just the last few months, not to mention the years prior, we have seen news outlets riddled with stories of women who have been denied venture funding, underpaid or fired, and sexually harassed and assaulted, including in the course of their careers and professional pursuits.

These are serious issues that deserve serious attention. Efforts to integrate gender and other diversity indicators into the public and private sectors are beginning to achieve global impacts. At Access Now we strive to defend and extend the human rights of users at risk. We recognize that diversity and inclusion are central to this mission, and have made diversity a core part of the work that we do. That doesn’t mean we always get it right, but we’re always working toward that goal and learning how to improve. We have proposed that an approach to diversity and inclusion includes at least three pillars:

developing institutional and operational systems and processes that respect the range of backgrounds and experiences that diversity brings;

creating public policies that are not developed or dictated by a single point of view;

and providing platforms for discussion such as panels or events that highlight the voices and perspectives of under-represented people and organizations that are breaking through societal roadblocks and developing valuable expertise, often at great personal cost.

Unfortunately, with the current speaker roster, RSA Conference USA 2018 is creating an exclusionary environment that undermines key principles of diversity.

At the moment, the RSA Conference USA 2018 lists 22 keynote speakers or panelists. Of the 22, 20 are substantive experts on topics related to the conference, including issues related to information security and cybersecurity. All 20 are men. Of the remaining two, only one is not male, Monica Lewinsky, who is joining to speak about “survival, resilience, digital reputation, and equality.” These are important topics, but they do not replace the need for speakers who can provide robust representation for women and TGNC individuals working in the technology sector.

Even more troubling, one place where women are visibly speaking at the conference is during a three-hour session block called “Women in Cybersecurity,” where some of the top cybersecurity professionals (who happen to identify as women) will be asked to speak not about their substantive work, but instead about diversity and the role of the woman in the tech sector. While these sessions may serve a goal in some environments, using them in place of actual gender diversity is reprehensible.

RSA Conference owes a duty to its audience. On its mission page for the RSA events (RSA hosts more than one a year), RSA makes the following claim:

“Not to brag, but collectively our conferences draw over 50,000 attendees per year, more than any other conference out there. Why? Two words. Valuable content. And the networking. And the inspiration.”

As the self-appointed leaders in information security conferences, and a conference that lists networking and inspiration as key selling points, a nearly all-male leading roster is simply not acceptable.



How did this happen? It’s hard to believe it is for lack of knowledge of the issues raised by lack of representation at panels and events. Women and TGNC individuals across the internet have raised alarm bells on this very issue for years. There are many resources for conference organizers, including the Geek Feminism Wiki, for example, with lists of diverse speakers in the tech field. Remarkably, despite these resources, many events beyond RSA Conference still fail to achieve even a modicum of diversity. However, as organizers of a series of conferences that attract a larger audience “than any other conference out there,” it is your responsibility to be aware of these issues and ensure proper representation.

The current keynote roster for RSA Conference USA 2018 sends a clear message: inclusion and representation are not necessary, and women and TGNC individuals are not welcome as leaders in this space. This is a message that will be heard not only by the attendees, but by organizers of other conferences that look to RSA Conference as a source for guidance. The bigger danger is that we could see this message — and the mindset behind it — reflected in hiring, development, and operational decisions across the sector, with consequences like lack of progress on innovation and lagging performance indicators, with the competitive advantage going to sectors and regions that place emphasis on gender equity.

There is still time for RSA Conference not only to take steps toward redress, but to become a leader in the sector on issues of diversity and inclusion. We implore you to explain what led to the lack of parity in the USA 2018 keynote roster. Further, we urge you to immediately take steps to remedy the lack of adequate representation, transparently and in close collaboration with affected communities, experts, and relevant stakeholders. Finally, we hope that you will invest significantly in creating new policies and procedures, in conjunction with relevant stakeholders and experts, to ensure that this never happens again, and encourage organizers of other conferences to do the same.

Sincerely,

Access Now

Download the letter in PDF format.