EPISODE 29

Bridging psychology and cybersecurity

In this episode of Behave, host Munya Hoto welcomes Alison Crockford, the Information Security Senior Adviser at Euroclear, for an insightful discussion about the world of information security and the challenges of building a security culture within organizations. 

The conversation delves into Alison’s day-to-day activities as an information security senior adviser, emphasizing the importance of building secure thinking, understanding security culture, and the shift from compliance-driven metrics to a focus on positive behavior change metrics. The discussion also touches on the proliferation of AI in technology and the challenges this brings in terms of governance and security within organizations.

Speakers:

Munya Hoto VP Marketing, CybSafe

Alison Crockford Information Security Senior Adviser, Euroclear

EPISODE 1

Human risk calls for human solutions

We can’t solve human risks by throwing technology at the problem—criminals will always find a way around it. An appeal for security teams to zero in on human cyber risk, and a look at the rise of email-, phone-, and text-based attacks.

Speakers:

Oz Alashe MBE CEO, CybSafe

Lance Spitzner Director, SANS Security Awareness

EPISODE 2

Cybersecurity as a life skill

What does it mean to lead a security team? We discuss the importance of culture, how to build a supportive team that knows why they do what they do, and how to make cybersecurity more engaging in a time when it’s become a life skill.

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Mads Howard People Centred Security Lead, Sage

EPISODE 3

The importance of building trust

How can we catalyze behavior change? Why trust is foundational to success, and how to focus on reducing risk and keeping people secure (without getting distracted by semantics).

Speakers:

Munya Hoto VP Marketing, CybSafe

Molly McLain Sterling Global Security Culture Leader, Medtronic

EPISODE 4

The impact of collaboration

From customer data and security in the financial industry, to the importance of collaborative conversations around risk culture and human behavior, women in leadership, and so much more.

Speakers:

Munya Hoto VP Marketing, CybSafe

Ellie Warner Managing Director and Global Head Of People Security, Standard Chartered Bank

EPISODE 5

Having a people-centric Cybersecurity culture

Discover the inspirational story of how Lianne fought her way into cybersecurity—and the lessons and achievements she picked up along the way. We also take a look at diversity in cybersecurity, the dangers of jargon, and the importance of including non-technical people.

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Lianne Potter Head of Security Operations, ASDA

EPISODE 6

Empowering a security team

We explore the intersection of psychology and cybersecurity, the impact of quality leadership, the availability and accessibility of useful security data, and what to do if you’re not getting the support you need.

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Alisha Chambers Security Engagement and Culture Manager, Tesco

EPISODE 7

Humanizing Cybersecurity

What’s the difference between having technical skills and being technical? How do your colleagues—and your relationship with them—shape the success of your security program? What does it mean to “humanize” cybersecurity?

Speakers:

Munya Hoto VP Marketing, CybSafe

Michelle Levesley  Cyber Security Awareness Lead, Channel 4

EPISODE 8

Building a security program from scratch

Linda and Louise reveal the benefits of sharing a role while building security programs from scratch, the importance of communicating the results your programs produce to execs, and the future of cybersecurity.

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Linda Morgan Security Engagement and Culture Manager, Quilter

Louise Cockburn Security Engagement and Culture Manager, Quilter

EPISODE 9

Why everyone should be a frontline defender in security

Three key insights on cybersecurity—according to an expert. We also discuss how 3,500 people should be frontline defenders against cyber attacks, why reports on human error do more harm than good, and why Dan thinks “cybersecurity” is a buzzword.

Speakers:

Munya Hoto VP Marketing, CybSafe

Dan Dipple Cyber Security Manager, Charles Taylor

EPISODE 10

How leaders build a strong security culture

Niamh debunks the misconception that cybersecurity is only about technology and reveals that it’s more about using data to understand what’s needed to support an organization’s growth. She also talks about building a strong security culture that supports growth, how women looking to enter the security space can build their network, and what it really means to be a CISO.

Speakers:

Munya Hoto VP Marketing, CybSafe

Niamh Muldoon Chief Information Security Officer, Fenergo

EPISODE 11

How you incentivize human behavior

Ava looks back at how she went from picking apart computers as a child to working in cybersecurity today, what’s involved in successfully changing human behavior, and what we can do to change the perception that humans are the weakest link in cybersecurity.

Speakers:

Munya Hoto VP Marketing, CybSafe

Ava Woods-Fleegal Global Security Awareness Leader, Raytheon Technology

EPISODE 12

Keep it simple, keep it secure

Lisa discusses her role and her day-to-day at DocuSign, fund allocation, tips on incentivizing people to work toward a more secure environment, and the benefits of simplifying processes for people to build trust and reliance in your security force.

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Lisa Kubicki Director, Trust & Security Training & Awareness, DocuSign

EPISODE 13

Don’t reinvent the wheel

A little advice to anyone starting out in the industry. And a lot on the weight human behavior carries in cybersecurity, how your best efforts can go to waste if you only consider the technical side, and how password culture has, and still is, evolving towards a more secure future.

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Stuart Walton Deputy Director of Digital and IT, Newman University Birmingham

EPISODE 14

Evolving with technology

Oge explains how the financial sector is progressing towards a more cyber secure future, and how we need to continue to evolve through innovation. She also discusses how to empower employees to be individual problem solvers and the importance of using metrics to improve performance.

Speakers:

Munya Hoto VP Marketing, CybSafe

Oge Udensi Director – Cyber GRC, SMBC

EPISODE 15

Why compliance matters

Catherine unpacks the idea that people are the weakest link, offering insight on where the industry is lacking and on the impact of cybersecurity regulation on the pharmaceutical industry. And finally, a few tips for women working in male-dominated spaces.

Speakers:

Munya Hoto VP Marketing, CybSafe

Catherine Moore Director of IT Quality, Compliance & Cyber Security, Mundipharma

EPISODE 16

Communicating security to senior executives

Speakers:

Munya Hoto VP Marketing, CybSafe

EPISODE 17

Identifying a strong security culture

Embark on a captivating journey with the Behave Podcast’s latest episode! Janet explores the importance of a good security awareness program and what separates the group, as well as sharing insight she has gained over in her long career in the industry.

Speakers:

Munya Hoto VP Marketing, CybSafe

Janet Roberts Global Head of Security Education & Awareness, Zurich Insurance Company

EPISODE 18

Standardizing appropriate cyber behavior

In their engaging discussion today, Ben and Leanne chat about the importance of creating useful resources and learning strategies for staff, the quality and delivery difference for off-the-shelf resources versus original, and the imperative need for psychological safety in your organization. 

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Leanne Walker Head of Cyber Culture and Behavioral Change, Royal Mail

EPISODE 19

Standardizing appropriate cyber behavior

In their discussion today, Ben and Itamar discuss the challenges surrounding a positive security training culture, what Itamar has learned across his many roles, as well as the attitude you need to have to do your best in combating human error.

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Itamar Shalev Cyber Security Global Awareness and Training Manager, Amdocs

EPISODE 20

Mental health culture and cybersecurity

Today, they discuss how Stephen approaches the many changes we see year after year – from the hygiene of security to how teaching real-world examples outside of a work environment can help employees truly understand the importance of security when online in any capacity.

They also explore how an open and inviting mental health culture can influence employees to carry this honesty and understanding into their work in cybersecurity, as well as the IT Apprenticeship program headed by Stephen.

Speakers:

Munya Hoto VP Marketing, CybSafe

Stephen Middleton Information Security Officer, EMR

EPISODE 21

Interdisciplinary security

With a long career of research in the space, Dr Nurse explores the interdisciplinary nature of cybersecurity, privacy and trust, especially considering the impact of new technologies on these areas.

Today, Ben and Jason have an in-depth discussion around how leadership, policies, training and change can affect a security culture, what questions SebDB can answer, and the two way relationship between change and your company’s security culture.

Speakers:

Ben Donaldson Community Engagement Manager, CybSafe

Jason Nurse Director of Science and Research, CybSafe

EPISODE 22

Urgency in adopting human risk management

Ash has worked extensively across UK Government departments, FTSE/FORBES organizations and Critical National Infrastructure (CNI), in addition to authoring the UK’s first quantitative framework and actuarial model for information risk. He has also served as a media commentator for Sky News & ITV on cyber security issues.

They discuss what Ash has found in terms of the ineffective practices in Information Security, how he approaches risk management, as well as how many industries aren’t moving rapidly enough toward the human risk elements of security.

Speakers:

Munya Hoto VP Marketing, CybSafe

Ash Hunt Global Chief Information Security Officer (CISO), Apex Group

EPISODE 23

Investigations and forensics

Mo is recognized as an authority in the security industry with an extensive career spanning nearly 20 years. His journey into the security field began in helpdesk and desktop support roles, gradually moving into security investigations and forensics, with this exposure to the human side of security, particularly user understanding and behavior, igniting his interest in security culture.

The conversation revolves around the evolution of security culture, human risk management, and the challenges of building effective security awareness programs within organizations. They touch on the changing landscape of security awareness training, and the shift toward understanding the importance of measuring and influencing behaviors, ultimately leading to the concept of human risk management.

Speakers:

Munya Hoto VP Marketing, CybSafe

Mo Amin Security expert

EPISODE 24

Psychological safety in cybersecurity

The discussion revolves around their unique journey into the world of cybersecurity and team dynamics, highlighting the critical need for psychological safety within cybersecurity ecosystems.

They stress the need for proactive measures to foster connections, empathy, and understanding among cybersecurity professionals. The conversation highlights that cybersecurity success hinges on human behavior and teamwork, advocating for a shift from compliance-driven approaches to a culture of psychological safety. By prioritizing this, MultiTeam Solutions aims to transform organizations, bridging the gap between cybersecurity and team dynamics for enhanced resilience and innovation.

Speakers:

Munya Hoto VP Marketing, CybSafe

Dr. Daniel Shore Co-founder, MultiTeam Solutions

Zac Broomfield Co-founder, MultiTeam Solutions

EPISODE 25

Security Awareness Efforts Fall Short. Now What?

In this week’s episode, host Joe Giddens sits down with Julie Haney, a computer scientist and usable cybersecurity program lead at the US National Institute of Standards and Technology (NIST). Julie has built an extensive career in the cybersecurity field, having worked for over 20 years in the US Department of Defense. She has a Ph.D. in human-centered computing and has researched the human element of cybersecurity.

Discussing a report released by Gartner entitled “Security Awareness Efforts Fall Short. Now What?” Julie delves into the challenges of security professionals and the urgency to measure program effectiveness.

Speakers:

Joe Giddens Director of Content & Communication, CybSafe

Julie Haney Computer Scientist and Usable Cybersecurity Program Lead, US National Institute of Standards and Technology (NIST)

EPISODE 26

Navigating burnout

Yanya’s unconventional journey into the cybersecurity realm, starting from a legal background and traversing international roles, brought a unique perspective to the discussion. She began her career as a criminal prosecutor and later moved on to the United Nations and the International Committee of the Red Cross, then to her current role at Accenture in Switzerland, where she focuses on human factors in security. 

The conversation took a fascinating turn towards the critical issue of burnout culture in the cybersecurity industry. Vanya shares her personal experience with burnout and highlighted the alarming statistics surrounding this problem. Together they discuss the organizational and cultural factors contributing to burnout, emphasizing the importance of psychological safety and a just culture in mitigating the issue.

Speakers:

Munya Hoto VP Marketing, CybSafe

Yanya Viskovich Senior Manager of Security Consulting, Accenture

EPISODE 27

Global security and local implementation

Mora’s captivating journey began in her native Argentina, where her background in journalism and communication led her to the intriguing intersection of security and human behavior.

In this insightful conversation, Mora shares her experiences and expertise, emphasizing the importance of bridging the gap between global security strategies and localized implementation. She highlights the challenges of tailoring security awareness programs to different Latin American countries, each with its unique culture and language nuances. Mora underlines the significance of making security content relatable and accessible, particularly for non-technical audiences.

Speakers:

Munya Hoto VP Marketing, CybSafe

Mora Durante Astrada LatAm lead, Zurich Insurance

EPISODE 28

Creating a security conscious culture 

Janet’s fascinating career journey, which began in journalism and included stints in media relations and paralegal work, eventually led her to the dynamic field of security awareness, even though it was initially only supposed to occupy 10% of her time in a domestic U.S. insurance company.

Today, Janet and Joe look at the Gartner Report into CISO Foundations Building a Culture of Security Consciousness. Throughout their discussion, they challenge the notion that security awareness is limited to phishing exercises and annual training. Janet highlighted the need for a broader range of metrics that go beyond click rates to measure behavioral change effectively.Localization and cultural considerations in security awareness, vendor partnerships, and long-term strategies for building security awareness programs are discussed.

Speakers:

Joe Giddens Director of Content & Communication, CybSafe

Janet Roberts Former Global Head of Security, Education, and Awareness for Zurich Insurance.