As International Women’s Day is marked on 8 March, conversations around representation, leadership, and opportunity across industries take renewed focus. In cybersecurity — a field that continues to evolve at remarkable speed — women in cybersecurity are playing a growing role in strengthening digital resilience, shaping security strategies, and mentoring the next generation of professionals.

Their journeys often involve navigating complex challenges while continuously adapting to new technologies, emerging threats, and changing security landscapes.

As part of its Women in Cybersecurity initiative, The Cyber Express asked cybersecurity leaders a simple but important question:

“Which skill or mindset has played the biggest role in building your confidence and growth in cybersecurity?”

From curiosity and continuous learning to calm decision-making and structured problem-solving, their responses highlight the perspectives that have helped them grow and succeed in the cybersecurity industry.

Here’s what they shared.

Women’s Day 2026: Voices of Women in Cybersecurity

Carmen Marsh

President & CEO at United Cybersecurity Alliance (Europe, US, Middle East & Japan)

Curiosity. Disciplined, courageous curiosity.

Cybersecurity is not a static profession. It is an evolving battlefield of technology, psychology, geopolitics, and human behavior. The moment you believe you know enough, you become obsolete.

I have always believed in expanding beyond what is required of me. Not just mastering the tools of today, but understanding the patterns shaping tomorrow. Reading outside your lane. Engaging with peers. Asking uncomfortable questions. Challenging assumptions.

Just as important is stepping out of isolation. Cybersecurity can feel technical and solitary, but the community is extraordinary. When you connect with mentors, peers, and diverse voices, you realize you are not alone in navigating complexity. That shared learning builds both competence and confidence.

Growth in cybersecurity is not about ego. It is about intellectual humility and relentless evolution.

That mindset changes everything.

Lisa Fitzgerald

Partner, Norton Rose Fulbright

Staying ‘cyber-calm’ is critical. Cyber-attacks are generally times of crisis for organisations. As a legal adviser, our role is to ensure certain steps are taken in a timely, methodical and strategic manner. It can seem like a clinical role – ensuring the information needed is gathered, mitigation obligations are in place and notification deadlines are met – but interacting with various stakeholders who are under great stress requires a very human and calm approach.

Hannah Suarez

CISO, Loyalty Status Co

I find that knowing when to specialize and when to generalize is a great asset. Specialization enables you to build and explore new and deeper threads of knowledge in a given area, and generalization allows you to build those threads into something more and to connect these threads into other areas. I don’t believe in the dichotomy that you can only be one or the other.

Dr Sheeba Armoogum

Associate Professor in Cybersecurity, University of Mauritius

My personal focus has been on ongoing learning. I make sure to stay up to date daily on new cybercrime trends, threat intelligence, and policy changes. Since cybersecurity evolves quickly, keeping informed helps me stay competent and confident.

Sofia Scozzari

CEO & Founder, Hackmanac

Curiosity has always been my primary driver and the strongest catalyst for my growth.
Another key mindset for me has been embracing constant innovation, anticipating change, rather than just react to it. Finally, I strongly believe that dedicating time to education and awareness is essential. Cybersecurity is often perceived as overly technical and complex, confined to specialists. In reality, however, it is also a business issue. Managers and C-level executives make strategic decisions about budgets and asset protection. Therefore, it is crucial that they understand the real impact of cyber risk and threats on their organization.

Bonnie Butlin

Co-Founder and Executive Director, Security Partners’ Forum

I did not come into security and cybersecurity as a technical or cybersecurity expert, and had to accept that understanding and addressing cybersecurity in my work is unavoidable. Over time, understanding cybersecurity, particularly as the field continues to develop and mature, has become a true asset for my work. It allows me to enhance my work with additional perspectives and understanding, for example, on threats and operations in the cybersecurity space, which directly or indirectly cross over into other areas of security and society.

Dr. Priyanka Sunder

CHRIO and Co-founder Secure Mojo

Personally, continuous learning and moving out of your comfort zone has benefitted me in building my confidence, credibility, professional brand and network. It has also helped me solve real life problems and align my career aspirations with my IKIGAI – my purpose or calling. I don’t look as growth as linear or hierarchical for me growth is measured in terms of knowledge across multiple domains (related or un-related), improving soft skills and solving deep-seated problems be it people, process, technology or data security. Every aspect of growth be it intrinsic or extrinsic, linear or vertical, regional role or bigger portfolio is a way to showcase your strengths and bring value additions to your team and organisation and communities at large. Follow you calling, make your career your calling instead of trading time and health for money.

Sabitha Sriram

Security and Risk Consultant

I think working for passion, strategic thinking, learning orientation and soft skills help a lot to excel in this domain.

Bree Kagwe

Ethical Hacker | Simplifying Cybersecurity For Women In Offensive Security

Structured problem-solving. Instead of getting overwhelmed by a big challenge, I focus on the next logical step. Being okay with not knowing everything, as long as you know how to find the next step, has been the biggest boost to my confidence.