Conversation, our catalyst to change security behaviour

Sarah Janes May 7, 2019

If we remove conversation from our security awareness toolset, we remove our ability to change behaviour. That was my enduring message at my talk last month at Cyber Security and Cloud Expo. I was speaking about how we can move people from knowing what they should do to doing it! […]

The board meeting that went bad: sharing tips on RoI

Sarah Janes March 11, 2019

IT Security Training for London businesses

“How can I prove I spent well” Last week a colleague relayed his story of a board meeting that went bad. He’d worked hard prepping the business case. But was rebuked with a chorus of. “I’ve seen all the horror stories.” “How much will that actually mitigate the risk.” And […]

Developing Secure Behaviours: our latest white paper

Sarah Janes February 18, 2019

There’s a misapprehension that because culture is a complex phenomenon it’s hard to define. Actually, it doesn’t have to be difficult: Culture is how we communicate what matters to us through what we say and do on a daily basis. Not so long ago, technical attacks by cyber-criminals required security […]

Only 3.4% of employees regularly talk to their colleagues about security

Sarah Janes January 7, 2019

During 2018 we ran our Security Culture Survey with over 2500 employees, asking them ‘how often do you talk about security at work’? I knew the result would be low, but I didn’t expect it to be as low as 3.4%. Does it matter if employees are not regularly talking […]

Why I’m considering buying my 6-year old a smart phone for Christmas

Sarah Janes December 9, 2018

Is 6-years old to young for a smart phone? The gut reaction is ‘damn right it’s too young’, ‘what do they need it for’. Well let’s face it most children don’t need a phone, like they don’t need an Xbox One X, but it is what they desire. So why […]

Six steps to setting up your security champions network

Leanne Mallett November 26, 2018

This month we’ve focused on security champions, and keeping it straightforward when it comes to pitching to the board, getting set up and measuring the outcomes. Here is all you need to develop skills and facilitate change at a grassroots level. Download your 6 steps guide

5 ways to evidence behavioural change through security champions

Leanne Mallett November 13, 2018

Five ways to evidence behavioural change through security champions Measuring change is notoriously difficult to translate into hard numbers. While we all want to be able to report direct reductions in costs associated with data breaches as a result of security awareness initiatives, the only way we can prove […]

Should security departments be responsible for cyber awareness?

Sarah Janes August 29, 2018

…I thought it was genuine… Last week a friend sent me this… A WhatsApp message stating if I clicked I’d get £75 of Costa vouchers. At this point I hadn’t come across the scam. But something seemed odd. My friend would never say ‘you can thank me later’. So, my […]