Meet Kaitlyn Yeo, Cybersecurity Engineer at International Transportation Service, LLC. International Transportation Service, LLC operates port terminals, coordinating vessel berthing, cargo loading and unloading, and container logistics using advanced systems to ensure efficient, secure movement of goods through the global supply chain.
This month, we're excited to have Kaitlyn Yeo share her journey from a student studying criminology and psychology to becoming a Cybersecurity Engineer at International Transportation Service, LLC, where she bridges the gap between technical infrastructure and cybersecurity strategy. She plays a critical role in safeguarding operations, including maintaining essential systems, leading incident response efforts, and directing change management processes to ensure secure and reliable updates.
Working within the maritime industry, Kaitlyn protects critical assets such as port terminals and shipping vessels that underpin the global supply chain. Her work also focuses heavily on regulatory compliance, aligning security practices with standards set by organizations like the Cybersecurity and Infrastructure Security Agency (CISA) and the United States Coast Guard under the Maritime Transportation Security Act. By balancing hands-on technical security with governance, risk, and compliance (GRC), she helps ensure that critical infrastructure remains secure, resilient, and operational.
Read on to learn how Kaitlyn got into cybersecurity and her advice for students considering a career in this field.
------------------------------------
My path into cybersecurity was anything but traditional. I originally set out to pursue criminal psychology, double-majoring in Criminology and Psychology & Social Behavior at UC Irvine. I even interned with the U.S. Postal Inspection Service, fully expecting a career in federal law enforcement. However, when the pandemic hit right as I graduated, I pivoted into a role as an IT Facilities Coordinator for an investment banking firm. It was there that I started connecting the dots between my criminology background and the digital world, leading me to discover Digital Forensics.
To bridge the gap into the industry, I moved into an administrative procurement role at my dad’s Managed Security Service Provider (MSSP) company and earned my CompTIA Security+ certification. I quickly realized that a certification alone wasn't a golden ticket into the field of cybersecurity. I am incredibly grateful for communities like WiCyS (Women in Cybersecurity) and CyberJutsu, which provided the hands-on projects I needed to turn my transferable skills into a career.
The most pivotal training I received was through the Clicked IBM SkillsBuild Program with WiCyS. This was where I finally learned how to translate technical actions into professional documentation through two specific sprint projects. The Incident Response and Review Mini Sprint gave me a realistic look at the lifecycle of a cyberattack, teaching me that responding to a threat is only half the battle—the other half is documenting the 'Review' to prevent future incidents. Meanwhile, the Creating and Implementing a Cybersecurity Program Team sprint was my first real introduction to the GRC (Governance, Risk, and Compliance) side of the house, showing me how to build security culture from the ground up.
These experiences prepared me for where I am today: the Maritime Transportation industry. If you’ve ever seen a massive container ship at a port, you’ve seen the "environment" I protect. We secure critical infrastructure—like the berths, vessels, and cranes that keep the global supply chain moving—focusing heavily on the Operational Technology (OT) risks unique to port operations.
In my current role, I apply those documentation and program-building skills to several maritime-specific initiatives. In Vulnerability Management & Asset Discovery, I lead the effort to identify and secure every piece of technology on our terminal—from office networks to the critical infrastructure managing yard operations. I also use the skills from my Incident Response sprint to draft Regulatory Playbooks, which are step-by-step guides ensuring our team communicates effectively with agencies like the U.S. Coast Guard or CISA during an emergency. Finally, through Governance & Policy Development, I translate complex federal laws into clear, actionable security practices that ensure we stay compliant with the Maritime Transportation Security Act (MTSA).
Transitioning into this niche was daunting, and I still face imposter syndrome daily. Learning complex maritime regulations while navigating my first cyber role felt like a mountain of on-the-job training. But I’ve learned to turn that self-doubt into an advantage: because I feel like I have so much to learn, I’m not afraid to wear many hats and ask the "silly" questions that others might skip. My biggest piece of advice? You don’t need to be "born technical" to succeed. Learn how to harness your transferable skills and take initiative with hands-on labs on learning platforms like TryHackMe or Hack The Box.
In my first year, the biggest "aha" moment was realizing that you cannot protect what you don't understand. If your environment isn't properly documented, you are essentially flying blind. This is where my non-technical skills became my greatest asset. As a Cybersecurity Engineer wearing many hats, my success hasn’t just come from configuring firewalls, but from clear communication. Whether I’m talking to a terminal operator or a high-level stakeholder, being able to explain deadlines, fill in knowledge gaps, and report progress is what actually keeps a project moving.
The transition from the classroom to the professional world was surprising because it’s rarely about finding a "perfect" answer in a textbook; it’s about navigating the chaos of a live environment. Looking ahead to the next five years, I don’t have a rigid job title in mind. Instead, I’m focused on growing into a leader who can bridge the gap between technical defense and the human element of security. My work is meaningful because it protects the literal backbone of our economy—ensuring that the goods people rely on every day arrive safely and securely.
For those looking to break in, remember that a certification is just a piece of paper—it’s your curiosity and your portfolio of projects that will land you the role. Don’t give up when it gets mentally tough; this field is a marathon of constant growth, and your unique background is exactly what the industry needs to stay ahead of the curve.
