People-Centric Security: How Reliable is Your Cultural Firewall?
Information security is usually described as a people, process, and technology challenge. In reality, however, many organizations overweight their security portfolios with technology solutions and neglect the human side of protecting information technology and assets. Human capital is among the most potent sources of business value for any organization. Companies that learn to harness and leverage the power of people-centric security reduce their risks and security costs, while improving overall user engagement.
This presentation will help attendees understand the power and value of a robust security culture. Based on the principles described in Dr. Hayden’s book People-Centric Security: Transforming Your Enterprise Security Culture, attendees will learn how organizational culture affects organizational performance, how that translates into strengths and weaknesses, and how to measure and assess their own organization’s security culture and behavioral patterns. The result will be a more informed and nuanced understanding of how attendees can foster a “cultural firewall” as strong and effective as their enterprise technology firewalls.
About Lance Hayden: Lance Hayden has spent over twenty-five years in information security, beginning his career as a human intelligence (HUMINT) operations officer with the CIA. As the Cyber Security Culture practice leader for Berkeley Research Group, a global strategy consultancy, he acts as a trusted security advisor to clients around the world and across industries including banking and finance, insurance, healthcare, retail, government, and telecommunications. Dr. Hayden is an expert on information security strategy, culture, and performance management. He researches and writes extensively on these topics, including his books PeopleCentric Security: Transforming Your Enterprise Security Culture and IT Security Metrics: A Practical Framework for Measuring Security and Protecting Data. He also contributes regularly to security industry initiatives, conferences and events. Dr. Hayden received his Ph.D. in Information Science from the University of Texas, where he teaches courses on security, privacy, and the intelligence community.