Explore the intricacies of human behavior and its impact on information security in this 38-minute conference talk from BSides San Francisco 2016. Delve into the concept of "reverse engineering the wetware" and discover how behavioral sciences can enhance cybersecurity practices. Learn about the pitfalls of overconfidence, the limitations of expert opinions, and the effects of ego depletion on decision-making. Examine advanced hindsight bias and its influence on security assessments. Gain insights into designing effective roles and incentives, evaluating vendor trustworthiness, fostering creativity, and building trust within organizations. Uncover the importance of clear communication and understanding the human mind in strengthening information security. Conclude with practical recommendations for implementing these behavioral insights to improve overall security posture.
Reverse Engineering the Wetware - Understanding Human Behavior to Improve Information Security
via YouTube
Overview
Syllabus
Introduction
Why does this matter
Blame game doesnt work
Reverse Engineering the Wetware
Behavioral Sciences
Overconfident People
Experts
Certification
Ego Depletion
Advanced Hindsight
Summary
Design Roles Incentives
Trusting Vendors
Creativity
Trust
Whats unsaid
Communication
The Human Mind
Recommendations
