As part of Women in Cybersecurity Month, we invited our volunteers to a series of questions relating to working in the field. Respondents offered a variety of insights, with particular emphasis on what led them to the industry, what keeps them in the field and why representation matters.
Disclaimer: The views and opinions expressed in this article belong solely to the authors and do not necessarily reflect those of ISC2.
Cybersecurity has long been viewed as a field dominated by technical complexity and fast‑moving threats. While historically a male-dominated field, the experiences of women working in cybersecurity tell a rich story: one of curiosity, resilience, evolving culture and a shared determination to make the field better for the next generation.
Drawing on the reflections of women across technical, leadership and emerging roles in cybersecurity, we explore what brought them into the field, what keeps them here and what needs to change to create a more inclusive future.
Entering Cybersecurity: Curiosity, Courage and the Journeys That Start It All
Cybersecurity careers often begin not with a straight path, but with a spark. For many women, that spark becomes a powerful entry point into one of the most dynamic and meaningful fields in technology.
Many women described their introduction to cybersecurity as the moment they realized that technology was more than a tool. It was a puzzle waiting to be solved. Whether sparked by childhood fascination with computers, the thrill of investigation, or the appeal of being the “coolest female hacker,” their journeys began with curiosity and a desire to understand how digital systems work.
Xue Tang, CISSP, explained that “things change regularly. That ongoing evolution has made the work fun and kept me in the industry. Learning to navigate and embrace those changes is essential. If you are not interested in continuous lifetime learning, security is not the right field for you.”
“Security is often about noticing small anomalies and having the discipline to investigate them thoroughly,” said Swaathi Ramesh, CISSP. “The field has challenged me in ways I find deeply engaging – it’s not just about code or infrastructure, but about anticipating threats, designing resilient solutions and evolving alongside technology. That problem-solving core is what has kept me in cybersecurity all these years.”
Others were drawn to the intellectual excitement of problem solving. Cybersecurity offered a career where learning never stops and where every challenge has real, meaningful impact.
What Keeps Women in the Field
Nearly every woman highlighted the same truth: cybersecurity evolves constantly and that constant change keeps them engaged.
No two days look the same. New attacks appear, new technologies emerge and new puzzles must be solved. For those who enjoy continuous learning, the field provides endless opportunities.
Lea Witt, CISSP, explained “I was originally drawn to cybersecurity because I love digging into complex problems and figuring out how things work beneath the surface. What keeps me in the field is the constant change, every day might bring new challenges that combine research, investigation and problem‑solving. It’s a profession where learning never stops, where each challenge contributes to something meaningful, protecting organizations, systems and ultimately people. This combination of intellectual depth, purpose, and continuous growth is what keeps me engaged and motivated in the field.”
The Human Side of Technical Work
While cybersecurity is rooted in technology, many women said the most surprising aspect is how deeply human the work is. Effective cybersecurity relies on communication, collaboration, strategic decision making and understanding how people behave. Many women said these skills are where they shine.
Although cybersecurity has made notable progress toward inclusion, real experiences from women reveal a landscape shaped by subtle challenges, cultural dynamics and moments that require resilience.
Invisible Barriers, Visible Impact
Many women described unspoken challenges that have significant influence over career progression. Examples include:
- Hesitating to join conversations dominated by men
- Feeling the need to repeatedly prove their expertise
- Being pushed toward project or people management rather than technical leadership roles
- Navigating workplace norms that seem intuitive to others but unclear to them
These challenges often go unnoticed, yet their long-term impact can shape confidence, visibility and professional advancement.
“Organizations must remain intentional to ensure women with technical ambitions remain in core technical tracks rather than being unintentionally redirected into adjacent roles,” said Daksha Bhasker, CISSP. “There is an unconscious bias in the industry that needs to be addressed. Technical skills of women must be honed, nurtured and supported so women can continue to integrate into the cybersecurity industry in technical core competencies.”
Mentorship is Crucial
Across all career stages, women agreed that mentorship had the greatest impact on their professional growth. Support came in many forms:
- Managers who challenged them while creating space for growth
- Mentors who recognized their potential
- Allies who supported them in difficult moments
- Professional communities that offered connection and encouragement
These relationships often became defining points in their careers.
“Mentorship has been one of the most important factors in my career,” said Swaathi Ramesh, CISSP. “Guidance from mentors who set high expectations, challenged my thinking and offered actionable feedback accelerated my growth in ways that formal training often cannot.”
Representation Still Matters
Despite progress, women remain underrepresented. Many described being the only woman on their team. Still, that did not limit their contributions. Confidence built through consistent performance helped them lead projects, influence decisions and shape outcomes.
Daksha Bhasker, CISSP, explained that “for women in cybersecurity, culture matters deeply! It makes a profound difference when an organization truly lives its mission, is intentional about meaningful inclusion and provides women opportunities.”
Advice for Women Entering Cybersecurity
You belong in this field. Start where you are, stay curious and let your learning guide you. Connect with others to continue to grow in your career.
“Support has played a critical role in my professional growth,” said Siri Vuppalapati, CISSP. “My mentors and supervisors have provided guidance, encouragement and perspective, especially during periods of transition. Professional communities such as ISC2 have also been invaluable in offering connection, learning opportunities and a sense of belonging in the field.”
Women who have succeeded in the field offered powerful guidance:
- Ask for mentorship, do not wait to be invited
- Build a network, even if it feels uncomfortable
- Say yes to opportunities before you feel fully ready
- Apply for roles even if you meet only some of the requirements
- Stay curious and persistent
- Protect your technical interests and resist being pushed out of the areas you love
Representation Requires Deliberate Choices
Representation is not achieved through checklists. It is built through daily decisions and intentional opportunities.
“Create visibility through meaningful, high‑impact work. Bring women into architecture reviews, stakeholder engagements, incident response efforts, customer conversations, and strategic programmes. Visibility accelerates development, strengthens decision‑making, and reduces blind spots across teams,” said ISC2 Candidate Alex Zolodova. “Encourage women to speak in meetings, in customer discussions, and on stage. Many hesitate, not because they lack expertise, but because they may not feel invited. A personal invitation can change a career trajectory. Diverse speakers attract diverse talent; people are drawn to voices they can resonate with.”
Despite ongoing challenges, women working in cybersecurity are optimistic about the future. They see increasing visibility of women in technical and leadership roles, stronger professional communities and a growing understanding that diverse teams produce stronger security outcomes.
The future of cybersecurity is brightest when it includes many perspectives. Women are not just joining the field. They are shaping it, strengthening it and building a more inclusive future for those who follow.
