Security Awareness Blog

Security Awareness Blog

Creating a Security Champions Network - #SecAwareSummit

J.Haren(3)Editor's Notes: John Haren is the head of security awareness for Diageo and one of the speakers for the upcoming EU Security Awareness Summit in London on 10 July. Below he discusses what his talk will be on and what you will learn from it.

Hi folks — I'm John Haren and I will be presenting in London on my experience around creating a network of security champions.I have worked for Diageo for 16 years in a variety of IT roles and I've been in the Information Security area for the last 4 years. I'm married with three children (14, 11, 7) and live just outside Dublin in Ireland. This family life does, as you can imagine, make life

...

We Face the "Curse of Knowledge"

The more I work with the security community on the human element, the more I realize we face what is called the "Curse of Knowledge". The idea behind this theory is that the more you know about a subject, the more difficult it is for you to understand how others perceive it. I first learned about this theory in the amazing book "Made to Stick". If you think about it, the theory makes sense. We in the security community live and breathe security, for us its only natural to change our daily behaviors to reduce risk. What we forget is that for the rest of the world, security is neither their passion nor is it easy for them (believe it or not, most people do not dream about two-step verification). As a result, what we perceive as both obvious and easy is actually hard for others. This is a big part of why so many

...

Motivating Staff to Join the Awareness Cause: What the Ambassador Pilot Taught Us

AngelaPappasEditors Note: Today's guest post is from Angela Pappas. Angela helps lead the awareness program at Thomson Reuters, a global organization with over 58,000 people. In this series of blogs Angela shares with us how she established their Security Ambassador Program.

About a month ago I wrote a blog about the Information Security Ambassador program at my company, Thomson Reuters. Our program enlists employees from around the world to educate and raise awareness with staff at their locations. In my blog, I promised to follow up with additional information related to lessons learned, success stories, ideas

...

RSA Panel: Protecting Our Youth from the Wolves of Cyberspace

RSA-Panel-ProtectingYouthInCyberspaceLast week I had the amazing opportunity to be part of the RSA Keynote panel on protecting kids online. The goal of the panel was to raise awareness of the risks kids face online today, but also just as importantly what we can do about it. I've been actively presenting around the world for over 15 years now, yet this was one of the most emotional and fulfilling talks I have ever been a part of. The panelists included


  • Alicia Kozakiewicz: Alicia is a survivor of Internet luring, abduction, and
...

A Tale of Two Summits - #SecAwareSummit

Folks, you have no idea how excited I am to officially announce the upcoming Security Awareness Summits in both London (10 July) and Philly (19 August). As many of you know we held our first Security Awareness Summit in Dallas last year. The results and feedback were so positive we are hosting two this year. The purpose of these summits is to bring together hundreds of awareness officers from around the world to share their stories and lessons learned and to create a super rich environment for networking. You can expect the following at each of the summits:

  • Six talks from leading awareness practitioners and researchers. Three of the talks will be on theory and three will be on practical application. You can find the name of the speakers, their talks, abstracts and the full agenda on the summit websites.
  • One
...