Digital Security Without Limits: Why Accessibility Is a Must

Upon graduating, I hope to find a job in the growing field of cybersecurity, and with the demand for employment increasing, I think it is crucial to mention why accessibility is a necessary implementation to cybersecurity rather than an afterthought. Cybersecurity is critical for businesses and people to protect their privacy and well-being. However, it is essential to understand that not everyone is alike, and certain people may have difficulty following the same standard procedures used in these scenarios. There are millions of people around the world with disabilities on a broad spectrum. Some may have a cognitive or neurological disability where they have trouble navigating complex layouts and processing large amounts of information, a visual disability affecting their ability to properly read the text on screen, an auditory disability affecting their ability to following along with videos and sounds, and/or a physical disability that can affect their ability to perform quick time events on their computer.

Organizations should routinely review their cybersecurity policies to ensure that they take into account the experiences of any employees with disabilities and to help ensure that everyone working at the company has fair and equal access to any of the tools, resources, and capabilities necessary to safeguard the company from upcoming cyber threats. Everyone in the organization may need to do their part to prevent a breach, whether small or large, and it is imperative to make it mandatory to include certain accessibility features to help achieve this. By offering access to screen readers, closed captions for videos, keyboard navigation, accessible fonts, and language tags, users may find it much easier to follow cybersecurity protocols, making it safer without having the difficulty of adapting to another person’s standards.

Whether or not a cyber breach occurs, most employers offer security awareness training to help those unfamiliar with these shady tactics be wary of becoming a victim of phishing and malware. The training provided to these individuals should be transferable in a normal situation. Although a common practice, an example like a type-in password may not always be the best choice for a person who has a cognitive disability. Imagine if this individual could use a fingerprint scan or facial recognition to help protect themselves and their information. If a portion of the population cannot effectively use the security tools given to them, then it is safe to assume that they could become easier targets for cyberattacks in the future. Along with why special training and more accessible tools are crucial in certain situations, some individuals may choose to find a less secure workaround and not choose the safer route, exposing themselves and potentially their organization to further risks.

              Sometimes, having individuals with disabilities may force the organization to think outside the box and develop a tough-to-crack privacy tool that may become the new standard. These companies and the cybersecurity professionals they employ need to make accessibility of security solutions a priority. Failing to do so can result in compliance and legal issues due to violating ADA regulations or WCAG guidelines.   I hope more groups with disabilities will feel included within this occupation and learn to advocate for themselves for the need for better security practices, thus highlighting why it is a necessity that cybersecurity tools and practices be accessible to all.  

Image: Istockphoto.com/LeoWolfert