Blog

Can you share an overview of your career journey and how you came into the field of cyber security?

After 28 years in policing, working across everything from frontline response to community engagement and project work, I made a move into cyber security. I joined Police Scotland’s Cybercrime Harm Prevention Team with no prior technical experience but a real appetite to learn. I am so glad I made the leap as I found myself in the heart of a welcoming, knowledgeable and collaborative cyber community here in Scotland.

From there, I went on to join the Cyber Strategy Implementation Team, helping shape the very first cyber strategy for Police Scotland. My focus was on prevention—working with the Home Office to develop a strategy aimed at identifying and supporting young people at risk of becoming involved in cybercrime and instead guiding them towards education, training and employment opportunities.

After retiring, I was offered a role at ScotlandIS to lead a project working with Managed Service Providers. We created the UK’s first Best Practice Standards Charter for MSPs—a community-driven initiative focused on securing the supply chain and promoting cyber resilience. Off the back of that, I was offered the role of Head of Cyber at ScotlandIS.
What motivated you to be involved with ScotlandIS?

No two days are ever the same at ScotlandIS. With a small team of 10, we juggle everything from running national clusters (Cyber, Data, MSP) to supporting startups, building the digital skills pipeline and delivering major events like ScotSoft and the Digital Tech Awards. It’s busy, but I genuinely love what I do and the people I get to work with.

Can you provide an example of a significant project or initiative you’ve led that had a substantial impact on your region’s ecosystem?

I’m especially proud of the charter work and of launching Cyber Pathways—a pilot project connecting students with real-life cyber roles and helping them visualise a future in this space. It’s now being rolled out more widely, creating direct links between education and industry.

What skills or knowledge areas do you think are key to being such a fantastic ambassador for ScotlandIS?

If there’s one thing I’ve learned, it’s that building strong relationships is key—Scotland’s tech community is small, but formidable. Knowing our members, their capabilities and helping connect the dots is how we continue to grow a thriving, resilient sector.

What are some of the biggest challenges you’ve faced working in such a fast growing organisation?

The biggest challenge? Time. There’s so much happening, so many opportunities and never quite enough hours in the day. But with great support from partners like UKC3 and an incredible digital tech community, we keep moving forward.

Can you share an overview of your career journey to date and how you came into the field of cybersecurity?

My route into Cyber Security wasn’t traditional, and my role itself isn’t technical. However, what many people don’t realise is that you can work in the cyber sector without being a technical expert. Every cyber security company, product, or service needs marketing—because without it, how do you connect with your audience? Like many others, I stumbled into the industry. At school, cyber security wasn’t on my radar, and I never imagined I’d work in this space.

When I left school, it felt like there were only two options: university or getting a job. But securing a job without experience, often requiring three or more years, wasn’t straightforward. University wasn’t the right path for me, so I explored apprenticeships, which turned out to be the best of both worlds. I gained a qualification in a field I was passionate about while also earning hands-on experience. Choosing an apprenticeship with CyNam was one of the best decisions I’ve made. Since joining, I’ve been exposed to a huge range of experiences, met inspiring individuals, and developed both professionally and personally.

What motivated you to become involved with CyNam?

Where did you start, and what are your ambitions for the future?

I started at the very bottom—an apprentice learning on the job and growing with CyNam and the wider sector. As for the future, that’s a tricky question. I firmly believe that everything happens for a reason. My main goal is to keep doing what I love, embrace new challenges, and continue learning. Whether that’s through my marketing efforts, events, or new initiatives, I want to keep pushing forward and making an impact.

How do you prioritise tasks and manage the challenges of your time?

I’m highly organised and still love traditional methods like pen and paper! I use a daily planner to tick off tasks throughout the day and schedule my workload weekly. But I also leverage digital tools. Notion and Trello are my go-to platforms for managing priorities effectively. A mix of traditional and digital planning helps me stay on top of everything.

Can you provide an example of a significant project you’ve been involved with that had a substantial impact on your region’s ecosystem?

Two projects stand out. First, the Securing the Future of Technology documentary series, where we explored topics like fintech, agritech, and space tech. It was crucial to highlight how cyber security intersects with various industries and how technology underpins everything we do. This project reinforced CyNam’s role in bridging different sectors and growing the cyber ecosystem.

Another key initiative was Clusters on Tour under the UKC3 umbrella. We collaborated with other cyber clusters, connecting with tech hubs in Cambridge, Milton Keynes, Bristol, and Cardiff. This initiative brought together 1,057 attendees, sparking valuable collaborations between businesses, academia, and government. From supporting the East of England Defence and Security Cluster during Cambridge Tech Week to exploring private-public sector collaboration in Milton Keynes, these engagements strengthened our national ecosystem and helped unify cyber clusters across the UK.

What skills or knowledge areas do you think are key to being such a fantastic ambassador for CyNam?

CyNam’s core values are at the heart of everything we do:

• Collaborative Ecosystem – Bringing together startups, businesses, academia, investors, and government to drive innovation.
• Inclusive Empowerment – Creating opportunities for all to contribute to a secure digital future.
• Passion for Place and Purpose – Championing Cheltenham as a cyber innovation hub.
• Purpose-Driven Innovation – Enabling real-world solutions through secure technologies.

Being an ambassador means embodying these values in everything I do—whether it’s building partnerships, sharing success stories, or fostering community engagement.

What’s one of your proudest achievements with CyNam so far?

Leading and presenting the Securing the Future of Technology documentary series. Imposter syndrome is real, especially in a sector as specialised as cyber security. But this project helped me gain confidence in discussing technical topics, managing an end-to-end production, and executing an engaging campaign. It was also a fantastic opportunity to work with talented videographers and meet incredible speakers. Using a variety of skills; project management, marketing, and content creation, I came out of it feeling accomplished and more confident than ever.

What are some of the biggest challenges you’ve faced working in such a fast-growing organisation?

When I joined, CyNam was rapidly expanding, and I was thrown into the deep end learning about cyber security while also navigating my role as an apprentice. My team and mentors were incredibly supportive, and I truly believe being in the deep end is the best way to learn.

One of the biggest challenges was establishing our online presence without a predefined structure. I made mistakes along the way, but through trial and error, we figured out what worked. Building successful campaigns and delivering engaging content was a learning curve, especially in such a fast-paced sector where everything is constantly evolving. But adapting quickly and staying ahead of industry trends has been key to our success.

What’s your favourite part of what you do?

It’s hard to pick just one thing! But if I had to choose, I’d say it’s the privilege of doing what I love every day while being surrounded by an incredible team. CyNam is filled with passionate, supportive people who push each other to grow. I’m constantly learning and evolving, and that’s what makes this role so rewarding.

Can you share an overview of your career journey and how you came into the field of cyber security?
Getting into the cyber security sector was accidental, as my initial studies were in music, but a passion for technology and keen interest in computing led me into teaching IT, firstly as a side-line, and later as a career. When an opportunity to lead a new information security programme at the college I was teaching at came up, I was encouraged to take it, and from there I gradually moved into a solely cyber security teaching role.

Images from the Resilient Futures: Women in Cyber Conference 2025

What motivated you to be involved with Cyber Wales and how did that lead into developing Women in Cyber?
I quickly became fascinated by cyber security, and took every opportunity to engage with the sector that I could. Being able to join the Cyber Wales meetings was a great opportunity to network, learn more about the variety of cyber security issues in the sector and develop my skills, and I attended regularly for some years. When I took on the role of Head of Cyber Security Education at the University of South Wales, I began to notice the lack of women at those meetings, and indeed at all the other meetings I was being invited to, and from there I set up the Women in Cyber network, not really expecting much interest, but it seemed to hit the mark, and our growth has been consistent ever since.

What does your career to date look like?  Where did you start and what are your ambitions for the future?
In terms of ambitions for the future… who knows! If you’d have asked me 5 years ago where I would be today, I would never have guessed that I’d be running a network with over 500 members, putting conferences together and hosting an annual event at CyberUK. I’d like to see the network continue to grow – whether as Women in Cyber Unlimited or in any other format. The important thing is that the network is there, in whatever form that takes.

How do you prioritise tasks and manage the diverse challenges that come with running a not-for-profit?
I do have a paid day job at ITSUS Consulting, so that always comes first. That means I can slot in women in cyber activities if I have quiet times, but when we’re busy at work, or when I have a lot of activities on for the network, I ensure I do these in my own time. ITSUS are brilliantly supportive, but it’s very important to me that I don’t take advantage of that. It does mean I might reply to messages late at night or very early in the morning, but I do try and reply to everything!

Can you provide an example of a significant project or initiative you’ve led that had a substantial impact on your region’s ecosystem?
I think this would probably be the conference that I started in 2024.

What skills or knowledge areas do you think are key to being such a fantastic ambassador for Women in Cyber?
Having taught and worked in a variety of cyber security areas, I have developed the confidence to discuss cyber security issues and I’d like to think I’m reasonably competent on the technical front. But I think the most important skill I have is the ability to network effectively. Whilst some people don’t like the term networking or its implications, I love chatting to people, and I really love connecting them. Being able to listen to someone’s issues – whether they are technical challenges or ones around career development or mentoring – and then being able to connect them to someone who can help is hugely gratifying. I like helping people I suppose, so that drives me to continue.

What’s one of your proudest achievements with Women in Cyber so far?
There are several things here for me. I’m very proud of bringing the networking breakfast to CyberUK. When I asked to run one of our meetings there a number of years ago, I really didn’t expect the NCSC to agree, but they did, and now it’s a regular feature at the event, attracting sponsorship – a real ‘pinch me’ feeling. I’m also very proud of winning the UK Cyber Security Council’s award for services to the Public Sector at the National Cyber Awards, and in the same year being invited to the King’s Garden Party. Both were a real honour for me.

What are some of the biggest challenges you’ve faced leading such a fast growing organisation? How did you overcome them?
Some of the biggest challenges are also the most mundane. For example, switching from emailing my newsletter to a proper mailing platform filled me with dread, but after my mail server blocked me for spamming people, and I had to try and send newsletters by staggering them in blocks of 30 people at a time, I got to a point where I needed a better solution. And things like managing the conference admin can be quite onerous, though not difficult. But the value I get from the outcomes of getting these things right makes the effort worthwhile.

How do you envision Women in Cyber Unlimited evolving in the next 3–5 years?
I’d really just like to see the network continue to grow and be useful to people. There are more and more networks popping up for women in the sector and women in STEM, and this is brilliant. Whilst I’d love Women in Cyber to continue to be one of those networks, the most important thing is that the networks exist, under any banner. If I’m still part of it then that will be a bonus.

With an evolving understanding of both technical challenges and industry dynamics, he plays a pivotal role in uniting stakeholders, advancing cyber security initiatives, and shaping the future of clusters. In this spotlight feature, we explore Ryan’s journey, contributions, and vision for a more secure and interconnected world.

Can you share an overview of your career journey and how you entered cyber security?
I started in the retail sector, focusing on compliance, where I developed a passion for technology and innovation. This led me to transition into tech, with cyber security standing out due to its dynamic nature and critical role in the digital world.

What motivated you to take on the Cluster Lead role with Midlands Cyber?
I wanted to fully immerse myself in cyber security while leveraging my leadership skills. This role allows me to drive industry growth, support businesses, and foster innovation in the Midlands.

What are your primary responsibilities, and how do they align with the organisation’s goals?
I oversee Midlands Cyber’s operations, drive business development, and support member collaboration. My focus is ensuring our initiatives align with members’ needs, fostering growth, and strengthening the regional cyber ecosystem.

How do you manage tasks and challenges in overseeing a cyber security cluster?
I prioritise member support, using simple but effective tools like lists and a notebook. Staying organised and focusing on impactful initiatives ensures meaningful progress.

Can you share a key project that significantly impacted the cluster?
A standout initiative was supporting CyberUK 2024 in Birmingham. We played a key role in the regional steering group, coordinated a fringe festival, and facilitated collaborations that continue to drive sector growth.

How did you navigate the challenges of entering cyber security?
It was a steep learning curve, but I immersed myself by attending events, networking, and learning from industry experts. The cyber security community’s collaborative nature made the transition smoother.

What skills did you focus on when transitioning into this role?
I took a broad approach, building relationships with experts rather than becoming a technical specialist. My role is about facilitating connections and fostering collaboration to drive innovation.

What’s one of your proudest achievements with Midlands Cyber?
Expanding and diversifying our membership base across various industries, creating a collaborative ecosystem that drives cross-sector innovation.

What challenges have you faced as Cluster Lead, and how did you overcome them?
Sustaining growth and gaining industry recognition were key challenges. I addressed this by advocating for cyber security, engaging policymakers, and ensuring meaningful member engagement to create real value.

How do you see your role evolving in the next 3–5 years?
I aim to scale Midlands Cyber’s impact regionally and internationally by expanding membership, fostering deeper industry partnerships, and driving innovation through strategic initiatives.

On October 24, 2024 UKC3 held their Pan Cluster 6 (PAN6) event, a day packed with insights, collaboration, and a vision to drive UK cyber security forward. This bi-annual event, brought together representatives from clusters across the UK, giving them a platform to tackle key challenges, share fresh ideas, and plan for the future. Here’s a quick roundup of the day’s highlights and where UK cyber security is headed.

Morning: Big Plans and a Look Ahead

The day began with a warm welcome from Linda Smith, Chair of UKC3, who shared the network’s latest achievements and goals. With over 10,000 students and young people engaged, a membership that’s grown to 18,000, and 17 active clusters nationwide, UKC3 has been making huge strides. Linda and Ben Shorrock, Ecosystem Lead, laid out UKC3’s strategic direction for expanding support to clusters and advancing UK cyber initiatives on a national scale.

UKC3’s New Game Plan

UKC3 is adjusting its focus to make an even bigger impact. This involves strengthening strategic partnerships and structures that help UK cyber security stay strong and adaptive. The organisation is moving towards a model that emphasises collaboration, funding support, and national advocacy, giving clusters the resources they need to respond to both local and national demands.

Fresh Initiatives in the Spotlight

Rebecca Bryant and Sue Lowe from the Department for Science, Innovation & Technology (DSIT) took to the stage, discussing the government’s focus on cyber resilience and innovation. They highlighted key projects under the National Cyber Strategy, including CyberFirst, which is helping to build a more diverse and sustainable talent pool for the future. 

Simon Newman shared insights from new cluster funding case studies, specifically in London’s cyber sector, where findings underscored training gaps, a reliance on Managed Security Service Providers (MSSPs), and the need for more standardised accreditation.

Afternoon: Building Stronger Clusters and Startup Innovation

The afternoon sessions kicked off with Danielle Phillips of CyberNorth, followed by group discussions led by Annabel Berry, who focused on Cluster Maturity Development. Attendees explored ways to strengthen regional collaboration, support cyber talent, and secure sustainable funding. This segment underscored the importance of a united approach to regional cyber development.

Robin Kennedy then introduced Cyber ASAP, the Cyber Security Academic Startup Accelerator Programme. This program has had remarkable success, creating 32 startups and generating £32 million in follow-on investments. Robin encouraged more academic and industry involvement to drive the next wave of UK cyber innovations.

Future Plans: National Goals and Local Initiatives

UKC3’s next six months are looking ambitious. Plans are underway to establish a National Cyber Industry Council and a Cluster Consultation Group to drive private-sector engagement. Additionally, a Cyber Security and Resilience Bill is being developed to promote best practices in resilience, digital identity, and professionalisation of the cyber workforce.

2025 will also see the roll-out of “Cyber Local” initiatives, with new funding and projects designed to address local needs and fuel the UK’s regional cyber capacity. The PAN6 event wrapped up with networking sessions, where the day’s learnings and plans for action were celebrated.

Key Takeaways

1. UKC3 is Growing: The network’s expansion will continue to shape both local and national cyber agendas.

2. Strengthening Resilience: Tackling regional skill gaps, supporting SMEs, and reducing cyber disparities remain top priorities.

3. Collaboration is Key: Academic and industry partnerships are crucial for initiatives like Cyber ASAP and CyberFirst to continue driving the UK’s cyber resilience.

With a solid foundation and a clear roadmap, UKC3 and its clusters are well-equipped to elevate the UK as a leader in cyber security. This year’s PAN6 event has set the stage for a resilient, inclusive, and innovative cyber future in the UK.

View the days highlight reel:

While Sophie’s day job involves working with a team of cybersecurity experts, her professional life extends beyond the typical nine-to-five. She’s also the co-founder and director of CyberWomen Group C.I.C, an initiative dedicated to making cybersecurity more inclusive by supporting women and underrepresented groups. On top of that, she’s organising the upcoming Cyber Leaders Challenge, a competition designed to nurture future talent in the industry. “I’m keeping busy,“ she says with a smile, balancing multiple responsibilities with enthusiasm.

A Passion for Change: The Birth of CyberWomen Group

CyberWomen Group C.I.C started back when Sophie was studying at The University of Warwick. Along with her friend Jenny McCullagh, they noticed the glaring gender imbalance in their computer science program. “We knew we were coming into a male-dominated industry, but we didn’t realise the extent of it,” Sophie recalls.

Instead of accepting this as the status quo, the two decided to make a change. Their first venture, a coffee morning at the University of Warwick, quickly ballooned into a full-scale conference, attracting over 200 attendees from across the West Midlands. The unexpected success of this event was a clear signal that there was a need for more spaces that elevated women and underrepresented groups in cybersecurity.

Realising they were onto something bigger, Sophie and Jenny launched CyberWomen Group C.I.C as a non-profit, creating a platform for students to connect and collaborate as they pursued careers in cybersecurity. Now, with 8 branches across the UK and plans to grow to 11 by early next year, the group has grown far beyond their initial vision.

Building a Welcoming Community

Despite its name, CyberWomen Group C.I.C isn’t just for women. Sophie and her team have worked hard to make the group welcoming for anyone from underrepresented backgrounds. “We want to create a space where nobody feels like they can’t be themselves,” Sophie says, emphasising that the group’s mission is about more than just gender. It’s about making sure everyone has a place where they feel supported and can thrive.

Sophie and her team ensure that all their events and initiatives reflect this spirit of inclusivity. “You’ll never see us focusing on just one gender,” she says. Instead, they aim to build a community where diversity is celebrated and where people can bring their authentic selves without fear of being left out.

A Future Focused on Personal Connections

While CyberWomen Group C.I.C has grown rapidly, Sophie is committed to keeping things personal. “We make sure we’re always available,” she says. Sophie and Jenny maintain close relationships with students and the group’s branches, making sure everyone feels heard and supported. “We’re here to listen to any concerns, opinions, or thoughts, and we always want people to know they have our backing.”

Looking ahead, Sophie wants to strengthen the group’s ties with both universities and the cybersecurity industry. By creating more opportunities for students to gain practical, hands-on experience, she hopes to help bridge the gap between academic knowledge and the skills needed in the workforce. “We want to keep working with industry because their support is invaluable,” she says, knowing that collaboration with businesses is key to preparing students for successful careers.

Sophie’s Advice for Aspiring Cybersecurity Professionals

As someone who’s already achieved so much early in her career, Sophie is full of practical advice for those starting out in cybersecurity. She encourages students to focus not just on developing their technical skills, but also on improving their communication and interpersonal skills. Reflecting on her experience with the Cyber Path program, she says, “It’s very easy in university when you’re doing coursework and projects to get caught up in that side, but actually developing the soft skills to be able to go to clients and give them a well-earned training course is invaluable”

For Sophie, the combination of technical knowledge and real-world experience is what sets someone apart in the competitive field of cybersecurity. She urges students to seek out opportunities where they can apply what they’ve learned in a professional setting, as these experiences are often the most valuable.

A Trailblazer on a Mission

Through her work at Cyberport Group and as co-founder of CyberWomen Group C.I.C, Sophie Powell is blazing a trail for inclusivity in cybersecurity. Her passion for empowering others and her drive to create lasting change are helping to shape a more diverse and welcoming future for the industry.

As Sophie continues to juggle her many roles, she remains focused on her ultimate goal: creating a community where everyone can thrive. “It’s all about building a movement,” she says. And with her dedication and vision, there’s no doubt that Sophie is well on her way to doing just that.