Security training: should we give humans a break?

Security training: should we give humans a break?

Cryptographer Bruce Schneier once said, "only amateurs attack machines, professionals target people" and yet how far should we be blaming humans for the breakdown of our cyber security?

Joining us on this podcast is Flavius Plesu, former CISO at Bank of Ireland and co-founder and CEO of OutThink – a platform which is transforming the way companies are engaging with their employees.

Many organisations push out some sort of security awareness training, simulated phishing emails, or bright, amusing posters relaying the importance of cyber security – but how effective are these traditional methods? Or could they, in fact, be doing more harm than good when it comes to building a solid relationship between the workforce and security teams?

Flavius explains why we should be reframing the conversation around what is expected from humans and why we need to be talking about "managing human risk" rather than "behavioural change". We also explore what the role of the CISO should be and how the public and private sectors can work better together.

<script src="" type="text/javascript" charset="utf-8"></script>

Presenter: Anna Delaney

Music: The Pain, Nick Homes



Copyright Lyonsdown Limited 2021

Top Articles

It’s time to upgrade the supply chain attack rule book

How can infosec professionals critically reassess how they detect and quickly prevent inevitable supply chain attacks?

Driving eCommerce growth across Africa

Fraud prevention company Forter has partnered with payments technology provider Flutterwave to drive eCommerce growth across Africa and beyond.

Over 500,000 Huawei phones found infected with Joker malware

The Joker malware infiltrated over 500,000 Huawei phones via ten apps using which the malware communicates with a command and control server.

Related Articles