Keynote Roundup: Samantha Davison

Infosecurity Europe

Keynote Roundup: Samantha Davison, Security Awareness & Education Programme Manager, Uber

Missed Samantha Davison’s keynote on Securing the Connected Human: Winning Hearts and Minds to Drive Secure Behaviour? Not to worry, here’s an overview of all the key points.

 

 

What was covered in your Infosecurity Europe keynote?

  • A look at the importance of security awareness and education for companies, with insight into how this is approached at Uber.

Why is that such an important issue for the industry at the moment?

  • Statistics such as “90% of all data breaches start with a human failing, generally in the form of a social engineering attack” drive home the point that we can build great technology to make a better experience for the user, however users also needs to know how to detect, avoid and report threats to the organisation.

What were the key points the audience took away from your session?

  • Go and sit with your user base, talk to them about their security experience and how they like to learn.
  • Make the programme that your users want, not the programme you as a security professional want.

What are your recommendations for anyone out there addressing this issue?

  • Go out and do both quantitative and qualitative research on what your users know about security and how they are behaving.
  • Then focus on around 8 key behaviors that you want to influence over the year.
  • Baseline test your users, educate them, test them again, users don’t even have to know they are being tested and it doesn’t have to lead to a gotcha moment.
  • Take that data to inform how you craft your programme and experience for the users.
  • Use that data to show the efficacy or lack there of, of your efforts.
  • Don’t be afraid to do a lab, don’t be afraid to do AB testing, collect the data and see what kind of impact you are having.

How do you think this issue will develop over the next 12 months?

  • Within security awareness there is a trend towards the customised experience.
  • In the past the topic of security awareness was a new thing and people focused on getting something out of the door and into practice, a lot of out of the box solutions came onto the market.
  • Now there is a shift towards building more crafted programmes in-house, catered to the actual business and user experience.

Like what you’ve heard so far? You can listen to Samantha’s full keynote or download the podcast from Itunes below.

 

 

Download Podcast

Media Partners

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies.