A collection of articles, interviews and videos focused on helping Information Security Leaders change the security culture within their organisation.

Training Want to improve your security? Understand the cognitive bias behind decision-making

People like to believe they’re perfectly rational beings. It can be a shock to learn that we’re not. It’s critical …

Training Cyber security through storytelling: which approach will motivate your users?

Oh no! The users have learned about a terrible new cyber threat and want immediate guidance! What do you do? …

IAM IAM: how analytics is changing everything

idax uses entitlement information to generate insights into who has access to either data or systems they should not have. …

Passwords Why security at work goes far beyond passwords

With more companies suffering serious data breaches in the past few months, and more people than ever before having their …

Training Why are so many security professionals reluctant to openly discuss what their rules are?

Well-written and well-understood rules help everyone in an organisation succeed and minimize unproductive conflict. Why, then, are so many security …

Human factor Top five human errors that impact data security

A recent paper by Osterman Research reports that less than half (42 per cent) of organisations have trained their employees …

Human factor What can Snoopy teach us about security?

Good security depends on people responding properly to a wide range of cyber threats. To train people effectively, you first …

Culture How well do you really know your company’s culture?

Every organisational culture has unwritten rules for How Things Are Done. Leaders and trainers need to understand their own culture …

Behaviour How to change behaviour in the workplace? Fear is not the answer

Head of Information Security at Bank of Ireland UK, Flavius Plesu, says that the key to improving security is to …

Security awareness Embarrassment and fear tactics used by scammers: why shy away from them?

Scammers employ strong emotions like embarrassment and fear as levers to compel their victims to engage in self-destructive behaviour. Security …

Human factor The problem of trust

Doveryai, no proveryai. “Trust but verify,” as Ronald Regan said. And, as much as I admire the Gipper for his …

Diversity Diversity in cyber: why the man vs women debate is getting boring

It’s no secret that cyber security has a diversity and inclusion problem. The industry’s female workforce comprises a meagre 11% …