Our latest Q&A interview features Kourtney Hayes, a cybersecurity leader and advocate who proves that nontraditional paths can lead to powerful impact. From business management to securing access and AI systems, Kourtney has built a career grounded in curiosity, community, and making cyber more inclusive. We loved diving into her mission to help others break in—and stay in—the field.

Can you tell us about your journey into the field of cybersecurity? What inspired you to pursue a career in this industry?

My journey into cybersecurity was very peculiar and anything but traditional. I started my career in customer service and retail management before discovering the world of technology. I have a business degree in management and my MBA, not a computer science background, but I was always curious about how to make over 6 figures without being a doctor or lawyer (even though we need those professions), curious about how data was protected, and how bad actors were stopped. I leaned into that curiosity, upskilled through certifications like CompTIA Security+ and CEH, and started raising my hand for opportunities others might have been intimidated by. My leap into cybersecurity was driven by a desire to protect people, data, and organizations, especially those from underrepresented communities and make good money. I’ve now spent over a decade in the field, building secure systems, driving security solutions, and guiding others into tech through my coaching business and brand, The Chic Tech Firm”. 

What do you find most exciting about working in cybersecurity? Are there any specific aspects or challenges that keep you engaged?

The field is constantly evolving, which means you never stop learning. Every day, there’s a new threat vector, an emerging technology, or a challenge to tackle. What excites me most is the impact. I’m not just solving technical problems; I’m helping build trust and resilience into systems that people rely on every day. As someone who works at the intersection of compliance, access management, and AI security, I’m especially interested in solving the “people problem” in security by making complex policies understandable and accessible so that we improve human behavior and reduce risk in meaningful ways.

As a millennial in the cybersecurity field, what do you think sets your generation apart in terms of approach or perspective towards cyber threats?

Millennials bring a unique blend of digital fluency and mission-driven thinking. We grew up alongside the internet. We’ve seen it go from dial-up to AI-powered systems, which makes us more adaptable and aware of the nuances of cyber risk. We tend to value transparency, innovation, and community. That shows up in how we approach security problems. We don’t just look for technical solutions. We ask who’s impacted, how to design for equity, and how to build with intention. We’re also more likely to advocate for mental health, work-life balance, and inclusive environments, which makes our security culture more sustainable.

How do you stay updated with the latest trends and developments in cybersecurity? Are there any specific resources or communities you rely on?

I stay plugged in through a mix of formal and informal channels. I’m active in professional communities like Women in Cybersecurity (WiCyS), ITSMF, and Women in Tech. I also read industry blogs, join Slack groups, attend webinars, sign up for newsletters like “The Hacker News” and follow thought leaders on LinkedIn. Conferences like AWS re:Inforce and AfroTech help me stay on the cutting edge, and I love mentoring because it challenges me to stay sharp for the next generation.

Could you share a memorable experience or project from your cybersecurity career that taught you valuable lessons or insights?

One of the most impactful projects I led involved redefining access management policies for a global cloud platform. The challenge wasn’t just technical. It involved navigating cross-functional teams, aligning with legal and compliance, and translating complex requirements into real-world processes. It taught me the value of clear documentation, stakeholder alignment, and speaking the language of both engineers and executives. It also reminded me that leadership isn't about having all the answers. It's about driving clarity, asking the right questions, and building mechanisms that scale.

What advice would you give to other millennials aspiring to pursue a career in cybersecurity?

Don’t count yourself out because you didn’t start with a technical background. Cybersecurity needs analysts, strategists, communicators, and problem-solvers from all walks of life. Start with what you’re good at, then build the technical foundation as you grow. Certifications can open doors, but mindset, curiosity, and community will sustain you. Raise your hand for the scary projects, find mentors who challenge you, and always remember this: you belong here. Your perspective is your power.

What role do you see artificial intelligence and machine learning playing in the future of cybersecurity?

AI and ML are reshaping the threat landscape and the way we defend against it. From anomaly detection to predictive threat modeling, AI can help security teams respond faster and smarter. But it also introduces new risks like biased models, adversarial attacks, and unclear accountability. That’s why I believe security professionals must be embedded in AI development cycles. We can’t secure what we don’t understand. I’m personally passionate about AI security because it sits at the intersection of innovation, ethics, and protection.

What suggestions do you have for making cybersecurity and IT education more accessible and engaging for the general public?

We need to demystify cybersecurity. Too often, it’s presented as something you have to be a genius to understand, when really it’s about protecting what matters. I think storytelling, hands-on learning, and real-world scenarios make all the difference. We also need more representation. When people see others who look like them thriving in tech, they believe they can do it too. That’s why I use my platform to share my story, create content, and coach women of color who want to break into the industry.

Keeping Up With this Intellect…

Socials:

Personal Page - @thecybersecuritybabe

Business Page - @thechictechfirm

LinkedIn: https://www.linkedin.com/in/kourtney-hayes-mba-ceh-a2096588

In this Q&A interview, we connect with Gary Hunt III, a privacy and cybersecurity attorney who blends his IT background with legal expertise to help companies navigate the complexities of cybersecurity. From advising Fortune 500s to addressing AI-driven threats, Gary shares valuable insights into the intersection of law and digital security. Dive in for an informative look at how legal professionals are shaping the present and future of cybersecurity!

Can you tell us about your journey into cybersecurity law? What inspired you to specialize in this intersection of law and technology?

My interest in information technology began during my undergraduate studies at the University of Notre Dame where I majored in Information Technology Management. However, it wasn't until 5 years later as I began my career as a privacy and cybersecurity attorney that I fully appreciated the impact cybersecurity has for individuals and organizations of all sizes/industries. Early in my legal career, I was fortunate to advise Fortune 500, multinational organizations on legal issues specific to cybersecurity, including cybersecurity compliance, incident preparation, and incident response, which has provided me with invaluable insights into the pervasive nature of this risk and the importance of proactive strategies. The constant development of global cybersecurity laws and regulations ensures there's always something new to learn, making this a particularly engaging area of law.

What do you find most exciting about working in cybersecurity law? Are there particular legal challenges that keep you motivated?

In my cybersecurity practice, incident response is the area I find most compelling. The ever-evolving tactics of cybercriminals and the frequency of attacks ensure that no two incidents are alike, presenting a constant stream of complex challenges. I find it particularly rewarding to guide clients through these crises, leveraging my experience to help them navigate the investigation and response process during these often stressful situations.

How do you stay updated with the latest trends and developments in cybersecurity? Are there any specific resources or communities you rely on?

Prominent news outlets, for example, the Wall Street Journal and the New York Times, typically maintain resources specific to cybersecurity (see here (WSJ) and here (NYT)), and these are great resources to review regularly to stay current on cybersecurity trends, including the latest cybersecurity incidents and attack vectors cybercriminals are targeting.

I am also a Certified Information Privacy Professional (CIPP) through the International Association of Privacy Professionals (IAPP) certification program, and the IAPP has several helpful resources specific to cybersecurity (see here for an example). Beyond that, If you'd like to keep track of developments in particular areas of cybersecurity, Google Alerts can be a helpful tool. Here's a link to instructions on how to set them up: Create an alert.

What advice would you give to millennials aspiring to build a career in cybersecurity law?

My strongest advice is to start networking with cybersecurity professionals early and often. Many cybersecurity attorneys are happy to connect with aspiring lawyers in the field—and we definitely need more diverse representation in both cybersecurity law (and the legal field overall). These conversations are invaluable for understanding the practice, determining if it's a good fit, and building your professional network. I've personally benefited greatly from these connections, and I encourage you to do the same!

Could you share a memorable experience or project from your cybersecurity career that taught you valuable lessons or insights?

I'll never forget my first IAPP Global Privacy Summit in Washington, D.C. Early in my career, it was eye-opening to see thousands of privacy and security professionals from all over the world gathered in one place. It gave me a true appreciation for the global impact of this work.

Borrowing from my earlier comments about networking, IAPP conferences have proven to be a great opportunity for me to network with current and former clients, classmates, colleagues as well as vendors and business partners that offer complimentary privacy and cybersecurity services for my clients. For those interested in cybersecurity, IAPP conferences are an excellent resource. In particular, the IAPP's annual Privacy. Security. Risk. Conference provides a unique opportunity for professionals to explore the connections between technology, privacy, AI governance, and digital responsibility.

How do you see artificial intelligence and machine learning influencing the development of laws and policies related to cybersecurity?

Artificial intelligence (AI) and machine learning are poised to dramatically reshape the cybersecurity landscape, and by extension, the laws and policies designed to govern it. I see several key influences:

• First, AI and machine learning are creating a more complex and dynamic threat environment. AI-powered attacks can be more sophisticated, adaptive, and automated, making them harder to detect and defend against. This increased sophistication puts pressure on policymakers to develop regulations that can address these evolving threats.

• Second, AI and machine learning are also powerful tools for defending against cyberattacks. AI-driven security solutions can analyze vast amounts of data to identify patterns and anomalies that might indicate malicious activity. This creates a tension: how do we regulate the use of AI in cybersecurity without stifling innovation that could be crucial for our defense? Finding the right balance will be a major challenge for legislators.

• Third, and perhaps most importantly, I believe AI will make it significantly harder for legislatures to effectively regulate cybersecurity. The speed of technological advancement in AI and related fields is simply outpacing the traditional legislative process. Laws and regulations often take years to develop and implement, while AI technologies are evolving at an exponential rate. This dynamic creates a significant challenge – how do we create laws that are not already outdated by the time they are enacted? I think we'll continue to see technology outpace corresponding laws and regulations, and AI will only exacerbate this trend.

To summarize, AI and machine learning are transforming cybersecurity in profound ways. Legislatures will need to be agile, innovative, and forward-thinking to develop laws and policies that can effectively address the challenges and opportunities presented by these technologies. I suspect a more proactive, adaptive, and perhaps even internationally coordinated approach will be necessary, but even then, keeping pace with the rapid evolution of AI will be a constant struggle.

Keeping Up With this Intellect…

LinkedIn: https://www.linkedin.com/in/garyhunt3/

Our next Q&A interview features Deon Butler, former NFL wide receiver for the Seattle Seahawks turned cybersecurity professional. With a degree in Forensic Science and a passion for tackling digital threats, Deon now leads a team of engineers as a Network Sustaining Security Engineering Manager. From the gridiron to guarding networks, we loved diving into the inspiring journey of this multifaceted intellect!

From the NFL to Cyber is quite the leap! Can you tell us about your journey from professional football to the cybersecurity world?

An absolutely unique path. It started with college, where I took classes for my Forensic Science degree. While processing mock crime scenes, there would be laptops, phones, and other digital devices that stored evidence. We would process those with various tools and find evidence that perpetrators thought they had erased. This led me to become really interested in how bad actors try to break in, delete, or hide information in digital devices. That interest translated into computers and networks and how bad actors attempt to ‘hack’ into networks and the various ways to protect them. All of this while also being a pretty good football player at Penn State University. 

The ultra-competitive team/individual atmosphere of sports allowed me to transition into corporate America seamlessly. I was often asked how well I handle pressure situations (3rd down and 2 with 1+ million fans watching and screaming), and I could answer that pretty confidently. Building chemistry with teammates from all types of backgrounds and working towards the same goal. Being accountable and not afraid to make key decisions in times of stress—these are just some of the traits that are just as important today in my corporate journey as they were in my past 7-year NFL career.

What are you currently working on in the tech space, and are there any upcoming projects or goals you're excited about?

Currently, I am working on improving our security posture by designing and streamlining firewall and security requests that come into our network. I lead a team of 8 engineers and hold the title of Manager, Network Sustaining Security Engineering. The process is exciting because we can measure the benefits through key performance indicators (KPIs) and client feedback. Seeing how ticket creation to completion time has decreased, as well as the client experience—all while educating them on our network posture and why we do things—helps lead to a more secure and educated company. Another current project is our software lifecycle process, ensuring our software/hardware versions are up to date. Vigorously testing code versions for vulnerabilities, remediations, and behaviors helps better deploy the best products that balance usability and security. The goal is to continue educating the client while growing my team as a whole and individually so they (and in turn the company) can achieve and even surpass their goals.

What do you find most exciting about working in cybersecurity? Are there any specific aspects or challenges that keep you engaged?

The most exciting thing about working in cybersecurity is the constantly evolving threats. The new challenges presented daily/monthly keep you forward-thinking and innovative. We have some of the most intelligent people in our field, and unfortunately, some of them are bad actors with various motives. Finding ways to enhance network speeds and functionality, providing ease of use for customers, while simultaneously protecting the network and customer data, is exciting. Whether through firewalls, security tools, or access controls, there is a large network footprint to protect. The constant race to be proactive rather than reactive is a daily challenge that I welcome.

The public often views athletes as role models, but cybersecurity isn’t as high-profile. How do you think pop culture can help raise awareness about the importance of cybersecurity?

Great question. This is something personal to me, as I think there is a stigma around information technology (IT) professionals in general. I think our culture thinks of ‘computer nerds’ who grow up building computers out of their basements as kids. While there may be some of that, most are individuals who took a liking to computers or software and ran with that interest. I am a big ambassador for communicating the message that you don’t have to have grown up tinkering with computers to get into an IT career. I often speak to youth and young adults thinking about starting an IT career and make it a point not to overdress and look unrelatable. I think a large part of getting our culture to buy more into the field of technology is allowing them to ‘see themselves’ in others currently holding those titles. There are so many aspects to what is considered IT. From hardware support, where you may fix someone’s laptop that is running slow, to being an intrusion detection specialist using software tools to scan a network for weaknesses that a bad actor may use to get in (think of having a server accessible from the internet with no firewall to block just anyone from their home logging into company assets). Kids are being exposed to so much technology at a young age and are able to casually troubleshoot device & network issues and don’t realize they’re already building the foundation for an IT/cybersecurity career.

As someone who has excelled in two very different fields, what advice would you give to athletes or others considering a major career change?

My biggest advice would be to be patient, humble, and take the same skills that allowed you to be great in your sports or other career into the new one that you pursue. Don’t be ‘diminished’ into thinking you are just an athlete. For instance, athletes of any level naturally have teamwork and communication skills, as you have to ‘talk’ to teammates about things going on in the game and diagnose them on the sideline to adjust on the fly. Additionally, athletes usually are able to work under pressure, as most sports have high-stakes moments that greatly impact the final outcome. Athletes also have to be able to accept various outcomes and move on from them during the course of a game. It’s often thought of as ‘focus on the next play.’ The amount of discipline and work ethic to succeed at a sport with high competition also carries over into the corporate world. Athletes have all these traits, which are foundational to almost any field they want to pursue. Only the specific skill set for the field you are pursuing may need to be learned, and that is the equivalent to learning new plays. You just need practice.

Looking back at your time with the Seahawks, what are some of your favorite moments from your NFL career? How did those experiences shape who you are today?

The NFL was an awesome experience for me. Some of my best memories were my first touchdown and actually being drafted, getting the call with close family and friends. Being part of the ‘Beastquake’ run, which is an epic moment in football history. The teammates I had, who became friends, and the stadiums I played in, stand out as well. The fact that my family was able to enjoy these experiences with me is something very important and non-tangible.

What’s something people might be surprised to learn about you?

I interned with the Philadelphia homicide unit in college and traveled to real-life murder scenes to watch how they are processed. In college, I majored in Forensic Science and love criminal murder shows. Watching detectives and crime scene experts use evidence to recreate the events that led to a murder really fascinates me.

Keeping Up With this Intellect…

LinkedIn: https://www.linkedin.com/in/vincent-deon-butler

Our inaugural Q&A interview is with Jeree Spicer, a Cybersecurity Engineer, author, and owner of ReeTheCyberboss. She holds multiple degrees, including a Bachelor's in Criminal Justice and Childhood Development, a Master's in Information Assurance and Cybersecurity, and is currently pursuing a Doctorate in Cybersecurity. We enjoyed the exchange with this millennial intellect!

Can you tell us about your journey into the field of cybersecurity? What inspired you to pursue a career in this industry?

My journey into cybersecurity is definitely unique and non-traditional. At age 5, I learned how to type, which was my first experience with technology, but I never thought I would have a career in this industry. Growing up, I always told my family I would be a lawyer, and once I got to college, that was still my goal. I graduated with a Bachelor's degree in Criminal Justice and Child Development, thinking I would become a family lawyer. Shortly after graduation, I enrolled in graduate school for a Master's degree in Social Work, believing I wanted to save the world. (Shoutout to the social workers because the field wasn’t for me, and I felt out of place!)

My aunt recommended I look into cybersecurity, and I had no idea what it was or if I could do it. I enrolled in a Master’s program in Cybersecurity in January 2018, had an internship by June, and was hired by August. By January 2019, I received another career opportunity, and by May 2019, I graduated from my program. I’ve been in this field for six years now and made the right decision. Growing up, I didn’t see anyone who looked like me in this field, let alone talk about it, and I want to be an inspiration for future generations.

As a millennial in the cybersecurity field, what do you think sets your generation apart in terms of approach or perspective towards cyber threats?

I feel like our generation is different from most. These are my own opinions and what I truly feel. We grew up during a pivotal time when the World Wide Web and social media were born. Because of this shift, I believe we are prepared for the cyber threats that come with technological advancements. There are many young professionals in this generation who are part of cybersecurity and want to make a change and educate others. We are constantly preparing the next generation on what to look for. We are coming up with new ways and innovative ideas to be proactive against cyber threats. Social media has made an impact, as most can use their platforms to educate about cyber threats. I’ve personally made funny content to help educate on threats so that I capture people’s attention and explain how to protect themselves.

Could you share a memorable experience or project from your cybersecurity career that taught you valuable lessons or insights?

I would honestly say attending conferences and making meaningful connections. I went to SecureWorld Detroit in 2018, attended a session, and was so impressed by the speaker that I had to stay behind and meet her. I waited at least 20-30 minutes for the speaker, and I’m glad I did because six years later, she is a mentor and a friend. She has had a significant impact on my career and has guided me through many career and life decisions. I owe a lot of my career to her and will forever be grateful for her guidance.

What advice would you give to others aspiring to pursue a career in cybersecurity?

Cybersecurity has room for everyone, both technical and non-technical. It isn’t going anywhere, and there is no rush. RESEARCH, RESEARCH, RESEARCH! Ignore social media and stay on your own path. This is a very lucrative field, but you need to put in the work to reap the benefits. Be patient!

What suggestions do you have for making cybersecurity and IT education more accessible and engaging for the general public?

I’m all about transparency and being realistic. You need to meet individuals halfway so that they are not immediately intimidated and feel discouraged. Make it fun and relatable. Offer scholarships to reduce the financial burden on someone interested in transitioning into the industry. Take some of the famous social media trends and relate them to cybersecurity and IT education to capture people’s attention. I’ve learned that people are more likely to feel comfortable learning this information when they are empowered and met halfway.

What do you think the intersection of cybersecurity and pop culture looks like?

When I think of this, I would love to see more celebrities hire cybersecurity professionals. There’s always a lot of focus on other industries, but everyone needs a cybersecurity professional. I would love to see more commercials, marketing campaigns, etc., on cybersecurity. We have an opportunity to bridge the gap between culture and cybersecurity, and we need to take it. That is something ReeTheCyberBoss™️ is truly passionate about.

Keeping Up With this Intellect…

Website: www.reethecyberboss.com

Instagram: https://www.instagram.com/reethecyberboss

Facebook: http://facebook.com/reethecyberboss

LinkedIn (Brand): https://www.linkedin.com/company/reethecyberboss

LinkedIn (Personal): https://www.linkedin.com/in/msjereespicer

Purchase Ree’s Book: “ReeTheCyberBoss(TM) presents The Adventures in Cybersecurity with Huggie Hugglesworth: Huggie Goes to Cyberspace”