Overview
Discover concrete strategies for fostering a robust security culture within organizations in this 24-minute conference talk from BSidesSF 2019. Learn why investing in security culture is crucial for organizational health and explore 10-20 easily replicable examples of effective practices. Gain insights into overarching strategies for cultural change, methods for measuring success in intangible areas, and understand the concept of cultural momentum. Examine the role of security champions, the importance of knowing your audience, and the value of show-and-tell approaches. Analyze unsuccessful attempts and their lessons, and participate in a Q&A session to deepen your understanding of creating a thriving security-conscious environment.
Syllabus
Introduction
Why does security culture matter
Security champions
Know your audience
Showandtell
Things that didnt work
Culture has momentum
Conclusion
Questions
Taught by
Security BSides San Francisco