Explore a thought-provoking keynote presentation that challenges the traditional view of human risk in cybersecurity. Delve into Masha Sedova's expertise as she examines the gap between awareness and action, introduces the concept of human risk through real-world examples, and discusses effective strategies for measuring and mitigating this risk. Learn about innovative approaches to influence security behaviors, including social proof, gamification, and positive reinforcement. Gain insights from corporate studies and security force surveys to understand the impact of human factors on organizational security. Discover a new perspective on empowering individuals to make more thoughtful security decisions and strengthen the overall security posture of organizations.
Blinded by the Weakest Link - A New Perspective on Human Risk in Cybersecurity
Overview
Syllabus
Introduction
Mashas Background
Human Risk
Awareness vs Action
What is Human Risk
The Story of Clara
The Human Risk
When it goes well
How do we affect change
Measuring human risk
Can we answer today
Past predictors
Impact vs likelihood
Corporate Executive Board study
Security Force Survey
How to get people to make more thoughtful security decisions
Social proof
Gamification
Positive Reinforcement
Taught by
OWASP Foundation
