Summary: The video discusses an interview with Janan Budge, research director at Forrester, focusing on enhancing cybersecurity through understanding human element breaches. It emphasizes the importance of shifting from traditional methods of security awareness and training to a more comprehensive approach that addresses various categories of human risk management. It points out the necessity for CISOs to invest strategically in areas that will genuinely reduce human-related breaches.
Keypoints:
- Introduction of Janan Budge, who leads cyber security research at Forrester.
- Discussion of human element breaches and their broader implications beyond social engineering and human error.
- Identification of eight categories of human element breach families, including social media compromise and generative AI misuse.
- Importance of understanding behaviors to effectively change them and enhance security culture.
- The need for security programs to move beyond traditional training methods to more holistic human risk management strategies.
- Integration of human risk management with existing technology to provide meaningful insights and data-driven decisions.
- Security awareness teams must engage with other departments to expand their influence and effectiveness.
- Encouragement for security professionals to evolve their approaches and reduce reliance on outdated fishing simulations and compliance training.
- Emphasizing the need for CISOs to lead these initiatives for better organizational understanding and support.
Youtube Video: https://www.youtube.com/watch?v=GWMRflvikdU
Youtube Channel: Security Weekly – A CRA Resource
Video Published: Wed, 19 Mar 2025 09:00:28 +0000