Re-thinking The Human Factor with Bruce Hallas

Re-thinking The Human Factor with Bruce Hallas

In this episode we re-visit an earlier theme explored in this series. The theme of mesurement and metrics. The question of how to measure awareness, behaviour or culture is something we consistently come across here at Re-thinking the Human Factor when exploring opportunities to work with clients. There's an palpable feeling, across industry chatter, that there's a real lack of maturity when it comes to how we demonstrate the effectiveness of our effrots to influence employee awareness, behaviour and culture. However, there is hope. In this episode I talk with Bernie Smith. Bernie has a focus...

Re-thinking The Human Factor with Bruce Hallas

In this episode we take a peek at the role of the security teams’ own culture and its impact on the broader organisational culture. This, is an important perspective, because whilst many commentators focus on influencing organisational culture they haven’t considered the role that the value and behaviours of the security team has in influencing positive security outcomes across the business. To help us explore this perspective, on cultural forces at play, we have a guest who knows a thing or two about how cultures are formed and influenced. Lianne Potter studied in social anthropology,...

Re-thinking The Human Factor with Bruce Hallas

If you’re a regular listener then you will have already met today’s guest Dr. Char Sample. Char is a force at work deep within the information security community. Char is a rarity, combining a deep knowledge of both the technical and human aspects of the challenges security professionals face when managing cyber security risks. Char and I go back a long way, to a horrible conference lunch in London, where her riveting conversation meant I didn’t have to eat what was on the plate in front of me. I have been forever grateful. That riveting conversation was all about our shared...

Re-thinking The Human Factor with Bruce Hallas

In this episode we are joined by a guest who has committed their career to the world of advertising agency work. Influencing target audiences awareness of products and stacking the odds in their clients favour, that the target audience will choose their product over their competitors. The challanges our guest has faced, over the years, are in many ways similar to those that education and awareness managers, for information security and data protection, now face.

Re-thinking The Human Factor with Bruce Hallas

The role of the human resources function, in the the overall process of employee awareness, behavioru and culture can't be under stated. In the early days of my research, at Re-thinking the Human Factor, it was very apparent that HR was a major stakeholder. From what I like to call KPI's clash, where stakeholders KPI's sometimes clash against each other, through to employee performance and development, and from HR processes such as starters, movers and leavers, through to organisational change. The HR department can add a lot of value to the process of delivering change in employee security...

Re-thinking The Human Factor with Bruce Hallas

When I first got involved in “information security” 20+ years ago, I found myself almost entirely surrounded by industry peers whose training and experience was in technology or technology disciplines. My training in law, marketing and finance, and my experience in business development, marketing, recruitment and even a stint in purchasing and supplies all seemed out of line with the world of IT security as it was called back then. As I came to understand, during my own research in human behaviour and culture, my lack of an education in technology meant I was culturally and even physically...

Re-thinking The Human Factor with Bruce Hallas

Finding relevent metrics, for security awareness, behaviour and culture has been a long standing  challenge which the information security industry has struggled hard to address. Now, when I reflect on how I personally tackled metrics, around the human factor, before I kicked off my research programme here at Re-thinking the Human Factor, I recognise I had an in-mature approach. That approach focused on what data I knew I could get rather than what was useful. Some industry folks called this "vanity metrics." That's all changed now, and that change started off, with getting back to basics...

Re-thinking The Human Factor with Bruce Hallas

Educating employees on their roles and responsilities when it comes to information security and data protection, is common sense, and, even if you don't think that's the case, it is, without a doubt, a regulatory obligation for many. So, what is "education" and what is going on in the world of learning and development which might help us to re-think the human factor? In this episode our guest, Teisa Marshik, a respected educational psychologist and passionate educator, shares how her's and her colleagues approach to educating learners is changing. We cover everything from how the effectiveness...

Re-thinking The Human Factor with Bruce Hallas

What can those of us responsible for security awareness, behaviour and culture learn from a member of the Bloodhound Land Speed world record attempt team when it comes to overcoming the seemingly insurmountable challenges we face?