Products
.svg)
Accessibility Widget
Accessibility tools for everyone
Accessibility Widget
Accessibility tools for everyone
Accessibility Widget
Accessibility tools for everyone
Accessibility Widget
Accessibility tools for everyone
Parliament House, Canberra, ACT. 12th March 2026. The roomis full of some of the sharpest security minds in the country. And theconversation that fills it is not about the latest ransomware variant, thenewest zero-day exploit, or the AI agent governance gap that is keeping CISOsawake. It is about something more fundamental — and more urgent.
The cyber industry is facing a talent crisis that AIcannot solve and automation cannot fill. The human capacity to detect thethreats that hide in plain sight, to understand the behavioural patterns thatprecede an attack, to think laterally about the blind spots that structuredminds miss — that capacity is in short supply. And seventeen percent of theAustralian cyber workforce being women is not a diversity statistic. It is acapability gap.
Storata was at the Women in Cyber Security Summit becausewe believe that the organisations best positioned to protect Australianbusinesses in the AI era are not just the ones with the best tools. They arethe ones with the most cognitively diverse teams. And the evidence from ParliamentHouse made that case more compellingly than any briefing document could.
A Voice from the Top: Lieutenant General Michelle McGuinness
Among the speakers at Parliament House was one whose presencealone set the tone for the day. Lieutenant General Michelle McGuinness wasappointed by the Cyber Security Centre as Australia’s National Cyber SecurityCoordinator (26 February 2024). In that role, LTGEN McGuinness leadswhole-of-government coordination of the delivery of Australia’s Cyber SecurityStrategy, coordinates responses to significant cyber incidents, driveswhole-of-government cyber incident preparedness, and works to strengthen Commonwealthcyber security capability. She brings 30 years of service in the AustralianDefence Force across tactical, operational, and strategic roles in Australiaand internationally.
Michelleis passionate about making Australia the leading secure nation by 2030 — andshe was direct about what standing in the way of that ambition. Her message tothe room was unambiguous and urgent:
“We need you, and wevalue you. We have a huge vision and a significant challenge — to be a cybersecure leader by 2030. There is a misconception that this is a male-dominatedand male-preferred profession. Statistics would back that with less than 70% ofthe workforce being women. We are working really hard to challenge that. Weneed to harness the motivation of our young students and school leavers, andcareer changers, to enter these fields more broadly.”
— Lieutenant General Michelle McGuinness, Australia’s NationalCyber Security Coordinator, Women in Cyber Security Summit, Parliament House,March 2026
That framing — from Australia’s most senior cyber securityofficial, at the nation’s parliament — is the context in which everyconversation that followed at the summit should be understood. This is not anindustry initiative or a corporate diversity program. It is a national securityimperative, articulated at the highest level of government and backed by 30years of military and strategic experience.
Lieutenant GeneralMichelle McGuiness, Australia Cyber Security,Women in Cyber Security Summit —Parliament House, Canberra, March 2026
17% of the Australian cyber workforce is women. In an industryfacing its most complex threat environment in history, that is not a pipelineproblem. It is a capability problem.
— Women in Cyber Security Summit, March 2026
The threat landscape in 2026 is the most complex it hasever been. The global cost of cybercrime is projected at $10.5 trillion thisyear. Every six minutes an Australian experiences an attack. The ACCC reported$325 million lost to attacks in 2025 alone. And 94% of Australians over 64 arenow taking active steps because they expect to be targeted by a cyber criminal.
AI has accelerated every part of this. Attackers are usingAI to scale phishing, automate reconnaissance, and generate social engineeringcontent at volumes no human attacker could sustain. The attack surface hasexpanded — every AI tool, every agent, every model that enters an organisationwithout governance is a new entry point that did not exist twelve months ago.
But the insight that landed hardest at the summit — theone that every security leader in the room recognised — was this: attackers donot move fast. They move quietly. They enter an environment, stay, and studybehaviour before they strike. They hit the blind spots — the places wherestructured, process-oriented security thinking has not yet looked. And thecognitive profile best suited to finding those blind spots is not the samecognitive profile that dominates the industry today.
Attackers hit the blind spots. The best defence against a blind spot is a different way of seeing. That is what cognitive diversity in cyber security actually means.
The summit made the case that the qualities women bring tosecurity — curiosity, lateral thinking, the ‘MacGyver’ factor of improvising solutionsunder pressure, resilience in crisis management, the human insight tounderstand how an attack affects people rather than just systems — are not softskills. They are the capability the industry is most urgently missing. And the17% figure means that most organisations are running their cyber defence withthat capability largely absent.
Jessica Hunter, Ambassador for Cyber Affairs and CriticalTechnology, DFAT delivered one of the summit's most resonant frameworks — fourprinciples for women navigating the security industry that Storata believesapply equally to the organisations hiring them. The Four S's are not advice forindividuals. They are a mirror for employers.
Women in cyber need to be visible — not working behind the scenes while others take the credit. For employers, this means creating the conditions where contribution is attributed, recognised, and rewarded regardless of who makes the loudest noise about it.
Not behind it. Not in the room but silent. In the room with a voice. For employers this means not just hiring women into cyber roles but ensuring they are in the decision-making conversations, not the implementation ones.
What are we doing today to grow the next generation? For Storata this is not a rhetorical question. It is an operational one — mentorship, visible role models, deliberate development pathways, and the kind of psychological safety that lets people be genuine about what they do not yet know.
Your story matters. Your organisation's story matters. The women in security who make the biggest impact are the ones who communicate what they know in ways that resonate — to clients, to boards, to the next person considering whether this industry is for them.
One of the most courageous moments of the summit was thenaming of something that is rarely said in professional settings: that hiring awoman is still treated as a risk by some organisations. Babies. Weddings.Menopause. Divorce. The unspoken calculus and mental time that runs in thebackground of decisions that should be made on capability alone.
The reframe that followed was the one worth keeping. The samelife experiences that some employers treat as risk factors are the ones thatproduce some of the most effective security professionals. The CEO of ahousehold runs negotiations, conflict resolutions, crisis management, and riskassessment simultaneously — often without a governance framework, a budget, ora team. That is not a liability. That is exactly the cognitive profile that acomplex, fast-moving security environment needs.
Jessica Hunter, Cyber Security Summit, Parliament House, March 2026
Fifty percent of women leave cyber organisations due toharassment. That is not a talent pipeline problem. It is a culture problem —and it is one that the industry cannot afford in an era where it is alreadycritically short of the cognitive diversity it needs to match a threatenvironment that is growing faster than the workforce defending it.
The summit was direct about what retention actuallyrequires. Not token programs. Not diversity reports. Education, flexibility,equal pay, autonomy, career growth, empowerment, and — the word that was saidout loud and meant — fun. The organisations that retain women in cyber are theones where those things are real, not aspirational.
One of the forward-looking insights from the summit thatStorata found most striking was about the generation currently entering theworkforce and the generation below them. Kids are digital natives. GenerationAlpha are protecting their privacy instinctively — they understand dataexposure in ways that their parents had to learn through incidents. Theirattention span for traditional security messaging is five to ten minutes. Buttheir instinct for the problem is already formed.
Today's youth is the future that will protect us. Thatmeans the pipeline for cyber security talent — particularly women in cyber —starts not in university recruitment but in how we talk about the industry topeople who are still in school. The summit made the case for making cybersimple, accessible, and compelling to this audience. Not mystified. Nottechnical for the sake of it. Real, relevant, and genuinely interesting.
“Cyber will always have mystique. But make it simple — make it clear how important it is. That is how you build the next generation of defenders.”
Women in Cyber Security Summit, Parliament House, March 2026
The Garage Girls reference — the women who worked behindthe scenes during wartime Australia to keep the country safe — was a reminderthat women have always been in the security business. The industry is catchingup to a reality that history already confirmed.
Storata was at Parliament House not as a spectator but asa participant in a conversation that we believe is directly connected to how webuild our own team and deliver for our clients. The case for cognitivediversity in cyber security is not a values statement for us. It is acapability argument.
The threats Storata protects Australian organisationsagainst — AI-enabled attacks, behavioural manipulation, the blind spots thatstructured thinking misses — require exactly the diverse, curious, creative,resilient thinking that the summit spent a day celebrating and advocating for.A Storata team that reflects the cognitive range of the threat landscape is amore capable team. That is not idealism. It is competitive logic.
At Storata, there are no junior handoffs. Every person on the team — regardless of background — leads work that matters. That is not a diversity initiative. It is how we operate.
The governance-first culture that defines Storata's client work defines our internal culture too. Psychological safety, clear accountability, and deliberate development pathways are not afterthoughts.
Good companies have on-the-job learning. Storata invests in the continuous development of every team member — because in a field that evolves as fast as AI and cyber security, standing still is falling behind.
The summit's advice — be curious and not furious, seek excitement and awe — is the mindset Storata hires for. The ability to ask the right question is worth more than the ability to answer the expected one.
Shape but never conform. That is the principle the summit left us with. It is also the principle Storata builds teams on.
Storata — Building the team the industry needs
The Women in Cyber Security Summit at Parliament House wasa room full of people who understand something that the broader industry isstill catching up to: that the most sophisticated threat environment in historyrequires the most cognitively diverse defence.
AI is reshaping every dimension of cyber security — theattack surface, the speed of threats, the complexity of governance. Theorganisations that will navigate that landscape successfully are not the oneswith the most tools. They are the ones with the most capable, most curious,most cognitively diverse teams. And building those teams means creatingenvironments where the best people — regardless of background, regardless ofthe life experiences that some still treat as risk factors — want to stay,grow, and do the best work of their careers.
That is the kind of organisation Storata is building. Andit is the reason the summit mattered — not just as an event, but as a reminderof what the industry is capable of when it stops leaving half its talentbehind.
Don't be afraid of yourself. Back yourself. Your moment is now.
— Women in Cyber Security Summit — the line every woman in every room should hear. And every employer too.
.png)
.png)
