Krisha Patel, Cyber security student at Victoria University

In a casual conversation with someone unfamiliar with the field, how do you articulate the excitement and potential of a career in cybersecurity, aiming to spark their interest?

We’re in the middle of a technological revolution, and cybersecurity sits right at the heart of it. Technology touches almost every part of our lives, which makes protecting it more important than ever. What I love about a career in cybersecurity is that it’s never boring; you’re always learning, solving problems, and staying one step ahead of the next challenge.”

Reflecting on your initial perceptions of cybersecurity when you first considered studying it, how does the reality of your experiences today compare?

My thoughts of cybersecurity from when I started my degree three years ago to today have vastly changed. I initially fell to believe the stereotype of what a person in the tech field does and who they are; or in short a lack of education and exposure to what tech is, and can be. To me the description was, a male coding behind a screen not seeing daylight (which is so far from the truth).

The biggest perspective shift for me was how much collaboration is needed in cybersecurity, which is something I really enjoy. I’ve found it’s not all about theory and coding, there’s a lot of hands-on

skills I’ve gained. Understanding how important cybersecurity is to businesses and organisations was really fascinating to me. My perception now for my degree isn’t limited to high level grades, it’s about learning more, and creating opportunities for others, especially women and underrepresented groups, to enter the field.

I’ve been able to meet a wide range of people, I’m privileged to have so many women and mentors who have wanted to uplift me through my career which was great because I feel like it’s a supportive community I want to be a part of and in the future help others like they did to me.

Upon graduation, which specific cybersecurity role do you aspire to secure employment in, and what motivates your choice?

I’ve been exploring roles in governance, risk, and compliance (GRC), and a cybersecurity paper I’m currently doing in this area has really sparked my interest. I love how GRC blends both technical knowledge and people skills, and with AI becoming more prevalent, it’s exciting to think about how this field will continue to evolve.

I’m also thrilled to have secured a role as a Security Analyst with Xero starting in 2026. I was really excited to accept the opportunity because of their strong well-established graduate program and the chance to rotate through different teams. I see it as an amazing way to gain exposure, hands-on experience, and a deeper understanding of the field.

When you decided to pursue a career in cybersecurity, how did your parents, peers, or career advisors react? Did you encounter any opposition, and if so, how did you navigate those challenges?

When I finished high school, cybersecurity wasn’t really on anyone’s radar. My friends often didn’t understand what it was or why I’d chosen it.

Thankfully, my family were incredibly supportive. They encouraged me to follow this path, and I’m really grateful for that.

Who or what has been the most influential factor in shaping your journey in cybersecurity so far, and how has it impacted your career aspirations?

The people I’ve met along the way have been the biggest influence on my journey in cybersecurity. Seeing women thrive in a field where representation is still limited has been incredibly inspiring and has motivated me to carve my own path. I’ve also been fortunate to have mentors and peers who genuinely want to see me succeed. They’ve encouraged me to take on challenges I might never have tried on my own. Tutoring has been another highlight, giving me the chance to engage with more students and see new ideas/perspectives.

Beyond your academic studies, what practical experience have you gained in the field of cybersecurity through employment or internships?

In my penultimate year, I had the chance to intern with Deloitte in their Risk Advisory team. It was really exciting to take the theory I’d been learning at university and see it in action in a real work environment. The experience understanding how cybersecurity is viewed in a corporate setting, and it changed how I approached my studies. I started relating what I was learning at university back to the business and people side of security, which made my learning feel more connected.

The cybersecurity industry offers various certifications from different organisations. Have you pursued, or do you plan to pursue any of these certifications? If so, which ones, and what factors influenced your choice?

I haven’t pursued certifications yet, but I plan to once I finish my degree and settle into my role.

I’m interested in some of the security and risk management certifications as it’s the career path I’m going down. I’ve had a look at CompTIA Security+ because it gives a broad foundation and if I continue down the governance, risk, and compliance track I’d like to look into CGRC or CCRP.

Given the rapid evolution of cybersecurity threats, do you feel that your academic program adequately keeps pace with the industry’s current landscape?

I believe we live in a fast paced world especially when it comes to technology, therefore I can understand how it could be difficult to keep our education relevant. However some of these papers haven’t changed since 2018. One lecturer advised us that the content we were learning was outdated. Talking to employers and discussing topics from the classroom is sometimes met with raised eyebrows as they can often agree about areas being outdated.

What aspect of your cybersecurity studies excites you the most, and why?

What excites me most about my cybersecurity studies is how practical it can be. I like that it’s more than theory. We get to see how attacks work, figure out defences on a technical and theoretical level, and see how decisions play out in real scenarios. It keeps me on my toes because there’s always a new way to think about the same problem. I’ve also really enjoyed learning the foundational side of things, for example how the internet works at a low level. These basics come across simple, but they’re still at the foundation of cybersecurity today, and understanding them makes me feel more grounded in the field. I enjoy that both of these aspects connect to real people and real risks.