Perry Carpenter and Dr. Jessica Barker recently presented their joint session titled “Conversational Security Awareness” at the SANS Managing Human Risk Summit. The session aimed to explore the importance of effective communication in the context of cybersecurity and risk management. The conference provided an opportunity for industry experts to share their insights and discuss the latest trends and challenges in the field.
During the presentation, Carpenter and Barker emphasized the need for organizations to prioritize security awareness training that focuses on open and meaningful conversations. They highlighted that traditional one-way communication methods, such as generic awareness programs and email reminders, may not be effective in creating a culture of security within an organization.
Instead, the speakers advocated for a conversational approach, which involves engaging employees in interactive discussions and providing them with the knowledge and tools to make informed security decisions. They emphasized the importance of addressing individuals’ personal motivations and concerns, and the need to tailor communication methods accordingly.
Carpenter and Barker also emphasized the role of leaders in driving the conversation around security awareness. They discussed the significance of leaders being visible and actively participating in security discussions, as this sets a positive example for others in the organization. By fostering a culture of security at the top, leaders can encourage employees to prioritize and actively engage in security practices.
Furthermore, the speakers emphasized that security awareness is not a one-time event, but an ongoing process. They stressed the importance of regular communication and reinforcement of security practices to ensure that employees remain vigilant and informed. By constantly engaging in conversations around cybersecurity, organizations can stay ahead of emerging threats and adapt their security strategies accordingly.
After the presentation, Perry, Jessica, and Lance Spitzner from SANS had a discussion where they explored the key themes and takeaways from the event. They touched upon the evolving nature of cyber threats and the importance of staying updated with the latest trends. They also discussed the challenges organizations face in implementing effective security awareness programs and the need for continuous improvement in this area.
The conference also provided attendees with additional resources to further their understanding of security awareness. These resources included recommended books and related episodes of the 8th Layer Insights podcast, which offers valuable insights and discussions on various cybersecurity topics.
The production of the event was credited to various sources, including the use of music and sound effects from Blue Dot Sessions, Envato Elements, and Storyblocks. The artwork for the event was created by Chris Machowski and Mia Rune, while the theme music was composed by Marcos Moscat.
For those interested in getting in touch with Perry Carpenter, contact information was provided at the end of the event. This demonstrates the openness of the speakers to engage with individuals and organizations seeking further guidance or collaboration in the field of security awareness.
In conclusion, Perry Carpenter and Dr. Jessica Barker’s presentation on conversational security awareness at the SANS Managing Human Risk Summit highlighted the significance of effective communication in promoting cybersecurity within organizations. Their emphasis on engaging employees in meaningful conversations and the continuous reinforcement of security practices reflects the evolving nature of cybersecurity threats and the need for adaptive and engaging security awareness programs. By adopting a conversational approach and involving leaders in the process, organizations can foster a culture of security and empower employees to make informed decisions to protect valuable assets.