Women Who Go Beyond: Highlighting Leaders in Cybersecurity
To commemorate Women’s History Month, AvePoint has been shining a spotlight on female leaders in the cybersecurity sector who not only empower and inspire but truly go beyond to drive meaningful advancements in the field. These women are breaking barriers, showcasing resilience, and shaping the future of cybersecurity through their commitment and expertise.
Here, we highlight the achievements of these exceptional women who are not only making an impact in their own roles but also paving the way for the next generation of cybersecurity professionals. Their stories are a testament to the power of dedication, innovation, and leadership.
Britney Kennedy, BISO at Cardinal Health
 | Britney Kennedy made an indelible mark during the first decade of her security career with the US Army, where she travelled globally to secure military, police, and government networks.
During her tenure directing the information security department for AMC Theatres, she orchestrated a global security strategy, ensuring executive-level attention to cyber threats and security concerns. |
Upon joining Cardinal Health in 2020, Britney spearheaded cyber operations before transitioning into her current role as the global business information security officer. Her leadership is characterized by the cultivation of reliable, innovative, and collaborative teams that champion a culture of security awareness.
What does “going beyond” mean to Britney? “Going beyond is a spark of unexpected edge. I strive to invest time in the people and relationships of those I’m supporting. I knew I was ‘going beyond’ when this network of business partners, colleagues, and peers unexpectedly gave me a community where I’m trusted with unique insights that challenge me to continually grow and be a part of something bigger than myself.”
Joy Beland, VP, Cybersecurity Compliance at Summit 7
 | With the foundational experience of running her own MSP for more than two decades, Joy Beland’s expertise has evolved through both practical application and leadership. Selling her MSP in 2018 marked a new chapter, where she joined Continuum/ConnectWise, driving educational initiatives that shaped the cybersecurity landscape for thousands of MSPs. Joy pivoted to the CMMC ecosystem, where she led first-of-its-kind initiatives and achieved the coveted Provisional Assessor and Provisional Instructor status with the Cyber AB. |
|---|
She now serves as the vice president of cybersecurity compliance for Summit 7, as well as board member for multiple organizations and holds numerous certifications. Joy’s mission is to incorporate governance, risk, and compliance into daily language and skill sets for service providers and defense contractors alike — all in support of protecting our American dream.
What does “going beyond” mean to Joy? “Both in my role at Summit 7 and within the CMMC & MSP ecosystem, I am intensely focused on how I can make an impact on America’s future. I frequently mentor women looking to get into cybersecurity or excel on their path to higher-level roles in cyber. I have served as a panelist on multiple “women in cyber” sessions at conferences and webinars. Beyond this, I am a champion for sharing and educating on best practices; always capturing lessons learned into useful and actionable knowledge shared online or at conferences. The most powerful thing we can do for each other is to show up, support, and go the extra mile.”
Serena Sacks-Mandel, Field CTO at MGT
 | Serena Sacks-Mandel is a true embodiment of leadership and expertise as the field CTO at MGT. With a distinguished career that spans positions such as Microsoft Global CTO for education and customer success GM for US Education, she brings unparalleled experience and dedication to her role. Serena is not only a technical expert with numerous AI, cloud technology, and project management certifications but is also a passionate advocate for social impact and technology solutions. An accomplished speaker, author, and thought leader, Serena serves on various boards and authored “Empowered: Frame your Narrative. Own your Power." |
Her work inspires individuals to define success on their own terms and live a life aligned with their core values and purpose.
What does “going beyond” mean to Serena? “Going beyond means more than fulfilling your roles; it involves making a positive impact on others’ lives. It includes contributing in ways that are not required but create value and happiness for others, both those we know and the greater good. By empowering people to be their best, we improve the world for everyone.”
Tiauna Ross, Senior Director, Cybersecurity Innovation & Transformation at a Fortune 500 Med Tech Company
 | With a wealth of expertise that spans risk management, business analysis, project management, and accounting, Tiauna Ross has spearheaded pivotal initiatives, cementing her reputation as a formidable leader in driving security transformation and governance across complex environments. Beyond the corporate sector, she is also a fervent advocate for cybersecurity education and mentorship, having pioneered numerous educational programs for K-12 students throughout Michigan. |
As the current board president of Synergy Health Center, she harnesses her expertise to propel mental health and wellness initiatives within her community and beyond. Tiauna’s dedication to industry dialogue and collaborative initiatives further highlights her significant impact as a transformative leader in the field.
What does “going beyond” mean to Tiauna? “Going beyond is about leading with purpose, impact, and foresight – not just securing systems but helping others to adopt a security mindset. It means fostering a culture and community where cybersecurity is recognized as an enabler, not a barrier – and where individuals feel empowered to innovate securely.”
Debbie Wheeler, CISO at Delta Airlines
 | Debbie Wheeler has been a pioneer in information security and IT risk management since the 1990s. For more than two decades, she’s held the crucial role of CISO, spending the past eight years spearheading Delta Airlines’ security initiatives. Her storied career is marked by building and enhancing security programs, mentoring professionals, and driving community engagement. |
Among her proudest achievements are the cultivation of talent and the inspiration of young minds through the Cristo Rey Jesuit Atlanta High School work-study program, as well as hosting shadow events for Delta’s families in the local community. Beyond her many technical accomplishments, Debbie’s lasting impact lies in the careers and lives she has touched and profoundly influenced.
What does "going beyond” mean to Debbie? “Going beyond to me means caring about and protecting those things others take for granted – or don’t want to think about at all – and working to educate as many people as possible on the threats they are exposed to in cyberspace. We typically hear people say, ‘all my information is out there anyway, so why should I care?’ My response: Because we care about ensuring that only people you intend to share that information with have access to it! Caring about what they don’t want to think about – that’s going beyond.”
Dana Simberkoff, CISO at AvePoint
 | Dana Simberkoff, chief risk, privacy and information security officer at AvePoint, leads the company’s privacy, data protection and security program with unparalleled expertise. She is a current member of the Women Leading Privacy Advisory Board and a former member of the Education Advisory Board for the International Association of Privacy Professionals (IAPP). As an influential voice in cyber and data security, Dana was named a finalist for the Women in IT Awards in the Security Leader of the Year category, included in the SIA Women in |
Security Power Forum 100 and named a Top Global CISO by Cyber Defense Magazine. Her profound knowledge and passionate advocacy make her a pivotal figure in shaping the future of cybersecurity.
What does "going beyond” mean to Dana? “Building and maintaining a strong network of peers within the security community is not only essential for personal career growth but also allows you to learn from the experiences of others. Women tend to believe if they work hard and keep quiet, someone will eventually notice. It’s even more important for women to become their own promoters and advocates both inside and outside their organizations. You need to make sure that leadership is aware of your work and accomplishments and do so in a way that’s not boasting, but rather informative and helpful.”
Nichole Windholz, CISO at Onspring
 | Nichole Windholz boasts over two decades of experience in Information Technology and Security. In her current role as the CISO of Onspring, she focuses on risk management, business resiliency, and incident response. Nichole’s early career saw her spearheading multiple security domains, including security architecture, application operations, and incident response. She notably established and led a Cyber Security Incident Response Center for a global Fortune 500 company. |
Beyond her professional accomplishments, Nichole is a rounding member and president of Women in Security-Kansas City (WISKC) and has served as the president of the ISSA Greater Kansas City Chapter for five years. Throughout her tenure with ISSA and Women in Security, she has focused her considerable talents on outreach and mentoring those interested in a career in security and is passionate about sharing her Cybersecurity knowledge, along with connecting others in the industry with up-and-coming talent.
What does “going beyond” mean to Nichole? “To me going beyond means making an impact by leveraging your skills to influence others, getting involved in the community, and continuously learning. As a continuous learner, it’s crucial to adapt, embrace challenges, and keep up with industry changes through conferences and networking. Mentoring is also key; I regularly mentor and educate women in cybersecurity, collaborating with local groups and companies to promote security awareness.”
Candice Ling, Senior Vice President, Federal at Microsoft
 | Candice Ling, Senior Vice President of Microsoft’s US Federal organization, spearheads a team dedicated to driving exceptional mission outcomes for US Federal Civilian and National Security agencies. Under her expert guidance, Candice’s team leverages cybersecurity expertise and innovative technology, including AI, to solve complex government challenges. Candice’s leadership builds on Microsoft’s 50-year legacy of partnership with the US Government, continually pushing the envelope in enhancing efficiency and cost savings. |
Previously, she led the Civilian business, transforming 14 cabinet-level agencies and Tribal Nations. As former COO for Microsoft’s U.S. Regulated Industries, Candice supported a $16 billion business and led strategic operations. Before Microsoft, Candice was senior vice president at CGI Federal, managing US government agency accounts and driving cloud migration and IT modernization. Her relentless commitment to innovation and excellence continues to inspire transformative change across the public sector.
What does “going beyond” mean to Candice? "Going beyond your role underscores the significance of leading beyond authority. It means having the vision to see across the entire organization and ensuring that the whole is greater than the sum of its parts. The ability to break down silos within the broader organization and navigate different spheres of activity beyond your immediate work truly elevates a team from good to great. When facing challenges, you witness incredible perseverance and teamwork that transcend the daily grind. The combination of grit and grace is essential for achieving excellence and nurturing a supportive environment. Showing grace to yourself and others exemplifies someone who is truly going above and beyond.”
Michelle Wraight, Senior Director, Information Security at BNY
 | Michelle Wraight is the Global Head of Cybersecurity Client Trust and the Head of Cybersecurity & Privacy for BNY Investments & Wealth. She previously led the Enterprise Privacy Operations program, ensuring comprehensive GDPR compliance. With over 25 years in Information Security and Privacy, Michelle has held pivotal roles at Merck & Co., where she helped pioneer the company’s first formal Information Security program, and at BNY's Pershing, LLC as Chief Privacy Officer. Michelle shares her deep expertise through frequent speaking engagements at BNY, SIFMA, FINRA, and various industry conferences, as well as at a local university. |
She holds a Bachelor of Science in Information Technology and is certified in CISM, CRISC, and CDPSE. Michelle is also an active member of the FBI Infragard Program, the International Association of Privacy Professionals, and the Information Systems Audit and Control Association. Her dedication to innovation and excellence continues to shape the cybersecurity and privacy fields.
What does “going beyond” mean to Michelle? “Going beyond for me has meant stepping outside of my comfort zone and embracing new challenges. From pioneering an information security program, transitioning into the financial industry, and rising to Chief Privacy Officer when privacy was emerging, to building the GDPR-supporting BNY Enterprise Privacy Operations program. Recently, I’ve returned to my passion for information security, focusing on cybersecurity for our clients. Each step has been outside my comfort zone, yet rewarding and enriching. So, go beyond – you won’t regret it.”
Kirsten Rispoli is the Content Marketing Lead at AvePoint, where she leads editorial initiatives for global case studies, #shifthappens articles, and more. With a rich background in public relations and marketing, Kirsten has empowered a diverse range of organizations, from nonprofits to venture-backed startups, to effectively tell their stories.
