2/ the answer probably depends on what percentage of women have had positive vs negative experiences in infosec. for instance, if i'm an extreme outlier, sharing my experiences would likely do more harm than good by giving others high expectations which would likely never be fulfilled.
@bcrypt I neither am a woman nor work in Info Sec directly, so take whatever I say with a grain of salt. But I'd posit that if we discourage women from entering InfoSec until the industry changes it will have no incentive to change. As hard as it may be for some as they blaze that trail, it still seems that the best way for the industry to change is to have more awesome female engineers who show people inside the industry, and outside it as well, what's possible.
@bcrypt any ideas why your experience turned out so positive? It might be the companies you've worked for vs the ones the women with bad experiences worked for. Maybe if you share the positive experiences with a little detail about where it was at you would prevent the harm you're worried about.
@bcrypt I think it's useful to hear that experiences vary. Also, telling women about possible negative experiences working at tech companies hasn't scared off most that I've talked to — often they've thanked me for giving them a more informed choice, and more ideas about how to build a supportive network. So I think it makes sense to talk about what you like about the field, and what your career has been like, as long as as you acknowledge other experiences are valid too.