People-Centric Security: Transforming Your Enterprise Security Culture

People-Centric Security: Transforming Your Enterprise Security Culture
Author: Lance Hayden
Publisher: McGraw Hill Professional
Total Pages: 416
Release: 2015-09-25
Genre: Computers
ISBN: 0071846794

A culture hacking how to complete with strategies, techniques, and resources for securing the most volatile element of information security—humans People-Centric Security: Transforming Your Enterprise Security Culture addresses the urgent need for change at the intersection of people and security. Esentially a complete security culture toolkit, this comprehensive resource provides you with a blueprint for assessing, designing, building, and maintaining human firewalls. Globally recognized information security expert Lance Hayden lays out a course of action for drastically improving organizations’ security cultures through the precise use of mapping, survey, and analysis. You’ll discover applied techniques for embedding strong security practices into the daily routines of IT users and learn how to implement a practical, executable, and measurable program for human security. Features downloadable mapping and surveying templates Case studies throughout showcase the methods explained in the book Valuable appendices detail security tools and cultural threat and risk modeling Written by an experienced author and former CIA human intelligence officer

Transformational Security Awareness

Transformational Security Awareness
Author: Perry Carpenter
Publisher: John Wiley & Sons
Total Pages: 368
Release: 2019-05-03
Genre: Computers
ISBN: 1119566355

Expert guidance on the art and science of driving secure behaviors Transformational Security Awareness empowers security leaders with the information and resources they need to assemble and deliver effective world-class security awareness programs that drive secure behaviors and culture change. When all other processes, controls, and technologies fail, humans are your last line of defense. But, how can you prepare them? Frustrated with ineffective training paradigms, most security leaders know that there must be a better way. A way that engages users, shapes behaviors, and fosters an organizational culture that encourages and reinforces security-related values. The good news is that there is hope. That’s what Transformational Security Awareness is all about. Author Perry Carpenter weaves together insights and best practices from experts in communication, persuasion, psychology, behavioral economics, organizational culture management, employee engagement, and storytelling to create a multidisciplinary masterpiece that transcends traditional security education and sets you on the path to make a lasting impact in your organization. Find out what you need to know about marketing, communication, behavior science, and culture management Overcome the knowledge-intention-behavior gap Optimize your program to work with the realities of human nature Use simulations, games, surveys, and leverage new trends like escape rooms to teach security awareness Put effective training together into a well-crafted campaign with ambassadors Understand the keys to sustained success and ongoing culture change Measure your success and establish continuous improvements Do you care more about what your employees know or what they do? It's time to transform the way we think about security awareness. If your organization is stuck in a security awareness rut, using the same ineffective strategies, materials, and information that might check a compliance box but still leaves your organization wide open to phishing, social engineering, and security-related employee mistakes and oversights, then you NEED this book.

Security Awareness For Dummies

Security Awareness For Dummies
Author: Ira Winkler
Publisher: John Wiley & Sons
Total Pages: 295
Release: 2022-05-03
Genre: Computers
ISBN: 1119720923

Make security a priority on your team Every organization needs a strong security program. One recent study estimated that a hacker attack occurs somewhere every 37 seconds. Since security programs are only as effective as a team’s willingness to follow their rules and protocols, it’s increasingly necessary to have not just a widely accessible gold standard of security, but also a practical plan for rolling it out and getting others on board with following it. Security Awareness For Dummies gives you the blueprint for implementing this sort of holistic and hyper-secure program in your organization. Written by one of the world’s most influential security professionals—and an Information Systems Security Association Hall of Famer—this pragmatic and easy-to-follow book provides a framework for creating new and highly effective awareness programs from scratch, as well as steps to take to improve on existing ones. It also covers how to measure and evaluate the success of your program and highlight its value to management. Customize and create your own program Make employees aware of the importance of security Develop metrics for success Follow industry-specific sample programs Cyberattacks aren’t going away anytime soon: get this smart, friendly guide on how to get a workgroup on board with their role in security and save your organization big money in the long run.

People Strategy

People Strategy
Author: Jack Altman
Publisher: John Wiley & Sons
Total Pages: 192
Release: 2021-04-08
Genre: Business & Economics
ISBN: 1119716942

The Wall Street Journal bestseller! Learn to unlock the potential of your employees and colleagues with this definitive resource for people management People Strategy: How to Invest in People and Make Culture Your Competitive Advantage provides readers with a powerful framework in which to develop high-performing teams, increase employee motivation, and use data to build an inviting and effective company culture. Author Jack Altman, cofounder and CEO of Lattice, an award-winning HR and performance management platform, shows you how to: Establish the values that will form the bedrock of your organization Develop feedback processes that help employees feel heard, supported, and equipped to succeed Monitor the breadth and depth of employee engagement in your company Use the data and insights created by your People Strategy to drive business results Perfect for executives, managers, and human resource professionals, People Strategy also belongs on the bookshelves of anyone with even an interest in how to develop, nurture, and unlock the potential of their employees and colleagues.

Research Anthology on Business Aspects of Cybersecurity

Research Anthology on Business Aspects of Cybersecurity
Author: Management Association, Information Resources
Publisher: IGI Global
Total Pages: 698
Release: 2021-10-29
Genre: Computers
ISBN: 166843699X

Cybersecurity is vital for all businesses, regardless of sector. With constant threats and potential online dangers, businesses must remain aware of the current research and information available to them in order to protect themselves and their employees. Maintaining tight cybersecurity can be difficult for businesses as there are so many moving parts to contend with, but remaining vigilant and having protective measures and training in place is essential for a successful company. The Research Anthology on Business Aspects of Cybersecurity considers all emerging aspects of cybersecurity in the business sector including frameworks, models, best practices, and emerging areas of interest. This comprehensive reference source is split into three sections with the first discussing audits and risk assessments that businesses can conduct to ensure the security of their systems. The second section covers training and awareness initiatives for staff that promotes a security culture. The final section discusses software and systems that can be used to secure and manage cybersecurity threats. Covering topics such as audit models, security behavior, and insider threats, it is ideal for businesses, business professionals, managers, security analysts, IT specialists, executives, academicians, researchers, computer engineers, graduate students, and practitioners.

HCI International 2023 – Late Breaking Papers

HCI International 2023 – Late Breaking Papers
Author: Helmut Degen
Publisher: Springer Nature
Total Pages: 540
Release: 2023-11-25
Genre: Computers
ISBN: 3031480570

This seven-volume set LNCS 14054-14060 constitutes the proceedings of the 25th International Conference, HCI International 2023, in Copenhagen, Denmark, in July 2023. For the HCCII 2023 proceedings, a total of 1578 papers and 396 posters was carefully reviewed and selected from 7472 submissions. Additionally, 267 papers and 133 posters are included in the volumes of the proceedings published after the conference, as “Late Breaking Work”. These papers were organized in the following topical sections: HCI Design and User Experience; Cognitive Engineering and Augmented Cognition; Cultural Issues in Design; Technologies for the Aging Population; Accessibility and Design for All; Designing for Health and Wellbeing; Information Design, Visualization, Decision-making and Collaboration; Social Media, Creative Industries and Cultural Digital Experiences; Digital Human Modeling, Ergonomics and Safety; HCI in Automated Vehicles and Intelligent Transportation; Sustainable Green Smart Cities and Smart Industry; eXtended Reality Interactions; Gaming and Gamification Experiences; Interacting with Artificial Intelligence; Security, Privacy, Trust and Ethics; Learning Technologies and Learning Experiences; eCommerce, Digital Marketing and eFinance.

You CAN Stop Stupid

You CAN Stop Stupid
Author: Ira Winkler
Publisher: John Wiley & Sons
Total Pages: 368
Release: 2020-12-08
Genre: Business & Economics
ISBN: 1119622069

Stopping Losses from Accidental and Malicious Actions Around the world, users cost organizations billions of dollars due to simple errors and malicious actions. They believe that there is some deficiency in the users. In response, organizations believe that they have to improve their awareness efforts and making more secure users. This is like saying that coalmines should get healthier canaries. The reality is that it takes a multilayered approach that acknowledges that users will inevitably make mistakes or have malicious intent, and the failure is in not planning for that. It takes a holistic approach to assessing risk combined with technical defenses and countermeasures layered with a security culture and continuous improvement. Only with this kind of defense in depth can organizations hope to prevent the worst of the cybersecurity breaches and other user-initiated losses. Using lessons from tested and proven disciplines like military kill-chain analysis, counterterrorism analysis, industrial safety programs, and more, Ira Winkler and Dr. Tracy Celaya's You CAN Stop Stupid provides a methodology to analyze potential losses and determine appropriate countermeasures to implement. Minimize business losses associated with user failings Proactively plan to prevent and mitigate data breaches Optimize your security spending Cost justify your security and loss reduction efforts Improve your organization’s culture Business technology and security professionals will benefit from the information provided by these two well-known and influential cybersecurity speakers and experts.

Cyber Security Auditing, Assurance, and Awareness Through CSAM and CATRAM

Cyber Security Auditing, Assurance, and Awareness Through CSAM and CATRAM
Author: Sabillon, Regner
Publisher: IGI Global
Total Pages: 260
Release: 2020-08-07
Genre: Computers
ISBN: 1799841634

With the continued progression of technologies such as mobile computing and the internet of things (IoT), cybersecurity has swiftly risen to a prominent field of global interest. This has led to cyberattacks and cybercrime becoming much more sophisticated to a point where cybersecurity can no longer be the exclusive responsibility of an organization’s information technology (IT) unit. Cyber warfare is becoming a national issue and causing various governments to reevaluate the current defense strategies they have in place. Cyber Security Auditing, Assurance, and Awareness Through CSAM and CATRAM provides emerging research exploring the practical aspects of reassessing current cybersecurity measures within organizations and international governments and improving upon them using audit and awareness training models, specifically the Cybersecurity Audit Model (CSAM) and the Cybersecurity Awareness Training Model (CATRAM). The book presents multi-case studies on the development and validation of these models and frameworks and analyzes their implementation and ability to sustain and audit national cybersecurity strategies. Featuring coverage on a broad range of topics such as forensic analysis, digital evidence, and incident management, this book is ideally designed for researchers, developers, policymakers, government officials, strategists, security professionals, educators, security analysts, auditors, and students seeking current research on developing training models within cybersecurity management and awareness.

Managing Cybersecurity Risk

Managing Cybersecurity Risk
Author: Jonathan Reuvid
Publisher: Legend Press
Total Pages: 304
Release: 2018-02-28
Genre: Computers
ISBN: 1787198901

The first edition, published November 2016, was targeted at the directors and senior managers of SMEs and larger organisations that have not yet paid sufficient attention to cybersecurity and possibly did not appreciate the scale or severity of permanent risk to their businesses. The book was an important wake-up call and primer and proved a significant success, including wide global reach and diverse additional use of the chapter content through media outlets. The new edition, targeted at a similar readership, will provide more detailed information about the cybersecurity environment and specific threats. It will offer advice on the resources available to build defences and the selection of tools and managed services to achieve enhanced security at acceptable cost. A content sharing partnership has been agreed with major technology provider Alien Vault and the 2017 edition will be a larger book of approximately 250 pages.

Safety and Security of Cyber-Physical Systems

Safety and Security of Cyber-Physical Systems
Author: Frank J. Furrer
Publisher: Springer Nature
Total Pages: 559
Release: 2022-07-20
Genre: Computers
ISBN: 365837182X

Cyber-physical systems (CPSs) consist of software-controlled computing devices communicating with each other and interacting with the physical world through sensors and actuators. Because most of the functionality of a CPS is implemented in software, the software is of crucial importance for the safety and security of the CPS. This book presents principle-based engineering for the development and operation of dependable software. The knowledge in this book addresses organizations that want to strengthen their methodologies to build safe and secure software for mission-critical cyber-physical systems. The book: • Presents a successful strategy for the management of vulnerabilities, threats, and failures in mission-critical cyber-physical systems; • Offers deep practical insight into principle-based software development (62 principles are introduced and cataloged into five categories: Business & organization, general principles, safety, security, and risk management principles); • Provides direct guidance on architecting and operating dependable cyber-physical systems for software managers and architects.