Info

Human Factor Security

A podcast about the human element in social engineering, security, infosec, business and beyond. Jenny Radcliffe talks to experts from a wide variety of disciplines which go to make up the skill set she uses.
RSS Feed
Human Factor Security
2019
November
October
September
August
July
June
May
April
March
February
January


2018
December
November
September
August
July
June
May
April
March
February


2017
October
September
August
July
June
May
April
March
February
January


2016
December
November


All Episodes
Archives
Now displaying: Page 1
Nov 15, 2019

Martin Smith has a degree in Behavioural Psychology and served in the Royal Air Force, before leaving and working for several organisations prior to founding The Security Company, in 1997. Martin has also been a key figure in The Security Awareness Special Interest Group, which discusses the difficult questions and topics. 

Listen to Jenny and Martin talk about his time in the RAF, his undying optimism and how the human side of business needs as much if not more attention today. 

To find out more about The Security Group, click the link here.

To find out more about The Security Awareness Special Interest Group, click the link here.

To follow Martin on LinkedIn, click the link here.

To follow Martin on Twitter, click the link here

To read the post from Martin about his Father, click the link here.

Don't forget you can also follow Jenny on Twitter by clicking the link here

Oct 31, 2019

Sophina is a passionate Advocate for African Women in Cyber Security, where she helps to promote and support African Women with events, meet-ups, an online community and other initiatives. Through her inspirational leadership she is helping other women and the community at large better understand the advantages of having women in cyber security. Not content with that Sophina is a bug bounty hunter and researcher. 

Listen to Jenny and Sophina discus how she got into security, her trip to Las Vegas and why what she does is so important. 

To follow Sophina on LinkedIn, click the link here

To follow Sophina on Medium, click the link here

Mr Robot Series 1 (Blu-Ray)

Mr Robot Series 2 (Blu-Ray)

Mr Robot Series 3 (Blu-Ray)

Penetration Testing: A Hands-On Introduction to Hacking (Georgina Weidman)

 

Don't forget you can also follow Jenny on Twitter by clicking the link here

 

Oct 18, 2019

The Tin Foil Hats Club returns for its sixth episode. In this edition Jenny chats with Quentin Taylor, the Bushtucker CISO, as a follow up to the grab bag episode (No. 111) with Stuart Coulson and Cary Hendricks. Listen in as preparedness, the Hunted TV show and ideas for survival from movies are all discussed. 

To follow Quentin on Twitter, click the link here

To follow Quentin on Instagram, click the link here

To watch Quentin's videos, click the link here.  

Don't forget you can also follow Jenny on Twitter by clicking the link here

Oct 11, 2019

Daniel is responsible for leading the research direction for cyber security technology platforms, tradecraft and capabilities and partnering with a variety of organisations and individuals to help make Santander as a world class cyber security organisation.

Added to that he is a co-author of the Open Web Application Security Project (OWASP) ASVS Standard. Not content with that he is also an excellent documentary photographer.

Listen to Jenny and Daniel chat about how the industry needs to not only release vulnerability information but solutions to the problems found, how blaming 'the human' is a tired cliché and understanding them as well as the work they do is required, and advice to anyone starting out in Infosec. 

To follow Daniel on LinkedIn, click the link here.

To follow Daniel on Twitter, click the link here

To view the amazing Cocaine Cowboy photographs, click the link here.

Don't forget you can also follow Jenny on Twitter by clicking the link here

Sep 27, 2019

Omri is a malware researcher and threat intelligence expert with global experience in military, industrial, intelligence, communication and financial organisations. He is also an entrepreneur and public speaker. 

Listen in as we find out just how young he was when he first started to learn to program, how work ethic is important and that we should all be more considerate when thinking about sharing information as there could be wider implication to our actions. 

To follow Omri on LinkedIn, click the link here.

To follow Omri on Twitter, click the link here.

To watch Omri's talk at BSides Liverpool, click the link here.

Zero to One (Blake Masters) 

The Hard Thing About Hard Things (Ben Horowitz) 

Ghost (Kevin Mitnick) 

The Art of Deception (Kevin Mitnick)

V For Vendetta (Alan Moore)

Ghost in the Shell 

Don't forget you can also follow Jenny on Twitter by clicking the link here

 

Sep 23, 2019

The Tin Foil Hats Club returns for its fifth episode. In this edition Jenny chats with Cary Hendricks and Stuart Coulson to discuss grab bags, yellowhammer, Halloween costumes and how the recent social media "preparedness" campaign by emergency services may have raised more questions about possible incoming emergencies ahead of the 31st October, than it managed to resolve.  

What should go in a grab bag?

What do we do when the "network goes down"

What sort of emergency are government expecting?

Do we all need to head to The Winchester, have a pint and wait for this whole thing to blow over?

Not so much a Tin Foil Hat required as much as a Sombrero....

To follow Cary on Twitter, click the link here

To follow Stuart on Twitter, click the link here

Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe  

Sep 13, 2019

Kim writes about cybersecurity for Tripwire, AT&T Cybersecurity, Venafi, and Cylance's blogs. She also writes for Peerlyst. In the past Kim has contributed to Infosecurity Magazine, Threatpost, Comodo's blog, CCSI's blog, CSO, CIO, Computerworld, Hacker Noon, The Threat Report, and 2600 Magazine.

Listen in as Jenny and Kim discuss early years tech support, writing and deep fakes. 

To read the Deep Fake Peerlyst article by Kim, click the link here

To follow Kim on Twitter, click the link here.

To view Kim's LinkedIn page, click the link here.

Don't forget you can also follow Jenny on Twitter by clicking the link here

 

Sep 9, 2019

Neil Morrin is the co-ordinator for Ignite Liverpool, an evening of talks in a similar vein to TED and Pecha Kucha events but only 5 minutes long.

Ignite Liverpool is only the “local branch” of a much larger network of Ignites spanning the Globe.

Jenny has been speaking to the Ignite Liverpool Team and can announce that the next event will have a distinctly infosec and hacker flavour. 

Listen in as you learn what the ethos is behind the Ignite events, when this event is and how you need to submit a talk application. 

Mark your diaries for Monday 18 November 18:00 - 21:00 Leaf Cafe, 65-67, Bold St, Liverpool L1 4EZ

To find out how to apply click the Ignite Liverpool link here.

To find out how to book tickets to the event click the link here.   

To follow Ignite Liverpool on Twitter click the link here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

Sep 6, 2019

In the fourth of this semi-regular series, the Tin Foil Hats Club, Jenny chats with Kate O'Flaherty, Philip Ingram MBE and Ian Thornton-Trump to discuss voter fraud protection, bad actors and how we all need to be better at managing our cyber footprint. 

To read U.S. Government Confirms Plan To Defend 2020 Election Against Cyberattacks article by Kate click the link. 

To read Trump Administration Moves To Reauthorise NSA’s Controversial Spying Program article also by Kate click the link. 

Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe  

Sep 3, 2019

Jenny chats with Steve Lord, co-founder of 44CON about the origins of the event, the idea behind it and what's coming up at the ILEC in London. 

The training is taking place between 9 - 11th September 2019 and the conference is taking place between 11 - 13th September 2019. 

To find out more and go book your ticket click the link to their website here

To follow 44CON on Twitter click the link here

To follow Steve Lord on Twitter click the link here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

Aug 27, 2019

In response to Episode 104, this third episode in the semi-regular series, the Tin Foil Hats Club, Jenny chats with a previous guest,Patricia Vella. Taking the theme of the recent infrastructure failures from Episode 104, Patricia shares her extensive knowledge and experience on cascade events can cause the issues experienced and how planning for such incidents are key to mitigating their impact. 

To follow Patricia on Twitter click the link here

To visit Patricia's website click the link here

Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe  

Aug 23, 2019

Ian is the Co-Founder and Vice President at LMNTRIX, where they advocate an active approach to security rather than passive. 

Ian brings his years of experience, across many industries and types of organisations, to help companies with common sense advice and helping them to understand the threats they face.

Listen in as he explains how his background helped to shape him, including the work environment during his apprentice years, frustrations with some aspects of the industry and how Steve McManaman cruelly denied a career as a professional footballer. 

The Cuckoo's Egg (Cliff Stoll)

The Code Book (Simon Singh)

Sapiens (Yuval Noah Harari) 

To see Ian's LinkedIn profile, click the link here

To visit LMNTRIX's site, click the link here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

Aug 13, 2019

In the second of this semi-regular series, the Tin Foil Hats Club, Jenny chats with a previous guest, Philip Ingram MBE. They discuss the recent infrastructure failures the UK experienced, trying to cut through the noise to establish if they were part of a coordinated attack, what it means for the UK and why would such an attack take place. 

Look below for the links mentioned during the conversation. 

Philip Ingram's previous appearance on the Human Factor Security Podcast, click here to access that episode

Click here for the link to Philip's excellent article covering the issues of the failures. 

Click here for the Amazon link to the book recommended by Philip, Intercept: The Secret History of Computers and Spies (Gordon Cerera)

Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe  

Aug 9, 2019

David is a highly skilled program director who has national and international experience in Financial Services, Business Intelligence, National Security and Cyber, Smart Meters and IoT, amongst others. 

He has developed digital, technology, data integration and security strategies for e-health, smart meters, national security, border control, e-learning, cloud, cyber security and desktop.

Listen to them chat about working in governmental circles, with the challenges that brings, as well as looking at psychological factors that need to be considered when looking at risk within an organisation. 

CISO Defenders of the Cyber Realm (Mike Loginov)

Zero Dark Thirty (Blu-Ray)

To follow David on LinkedIn click the link here.

Don't forget you can also follow Jenny on Twitter by clicking the link here.

Jul 19, 2019

Alyssa Miller has a passion for security and her goal is to change the way we look at the security of our interconnected way of life and focus attention on defending privacy and upholding trust.

She evangelizes her message about evolving the way people think about and approach security, privacy and trust through speaking engagements at various conferences and other events.

Listen in as we learn how Alyssa took her first steps into the world of infosec, how important the right sort of leadership is and how being a football/soccer referee crosses over into handling situations in the security world.  

Sneakers (DVD)

To follow Alyssa on LinkedIn, click the link here

To follow Alyssa on Twitter, click the link here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

Jul 5, 2019

Andy is a hacker at heart, who's always been interested in taking things apart and sometimes even putting them together again(in-fact he spent a good few years in computer repair and data recovery).

As his day job, Andy works as a senior penetration tester who is capable of delivering a wide spectrum of assessment types. These include; web applications, external & internal infrastructure, open source intelligence gathering, configuration reviews and many more.

To check Andy's site out, click the link here

To check out Andy's YouTube channel, click the link here

To check out Andy's book, click the link here

To check out Andy's talks, click the link here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

 

Jun 21, 2019

Philip Ingram MBE BSc MA is a journalist specialising in the security, counter terror, defence and intelligence arenas. His knowledge is built from a long and senior military career as an intelligence and security officer, and strategic planner, with business experience at board level in the steel industry and security media (marketing) industry; he maintains a close interest in global events.  When not, key note speaking, chairing events, commenting for national and international press outlets or writing on security and intelligence, Philip runs his own media company, Grey Hare Media. Unsurprisingly it specialises in delivering informed content.

The Art of War (Sun Tzu)

The Hewlett Packard Mars Advert Link

Grey Hare Media Website

Link to the Blog Section of Grey Hare Media

To follow Philip on Twitter click the link here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

Jun 7, 2019

Christian has spent his career successfully disrupting traditional approaches to information protection and management for large international organisations. From a career in end user security, moved into Big 4 Consulting to build a practice around ‘CISO for Hire’ services that involved engagements with financial and insurance services clients. Leaving PwC after nearly 3 years, joined Pinsent Masons to lead their information protection strategy across a firm of over 3200 employees around the globe.

Listen to him chat with Jenny about the cultural complexities of woking for a global company, how sometimes it is best to ignore a queue and practical tips on getting into an invite only party. 

To find out more about the Smashing Security podcast Christian recommended, click the link here

To view Christian's LinkedIn profile click here

To follow Christian on Twitter click here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

May 24, 2019

Jake Moore is a Cyber Security Specialist for ESET. He previously worked for Dorset Police spanning 14 years primarily investigating computer crime in the Digital Forensics Unit on a range of offences from fraud to murder. Within law enforcement powers, he learnt how to retrieve digital evidence from all devices whilst engaging in a variety of ways to ethically break security in order to help protect innocent victims of cyber rime. He then became a cyber security consultant in the Cyber Crime Unit delivering tailored advice to the public and local businesses in order to help protect the community and build upon their security foundations.

Hello World: How to be Human in the Age of the Machine (Dr Hannah Fry) 

To view the Jake Moore ESET YouTube Playlist click on the link here.

To follow Jake on Twitter click the link here

To follow Jake on LinkedIn click the link here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

May 17, 2019

Richard Hollis is the Chief Executive Officer for Risk Factory Ltd, a European information security risk management consulting firm specialising in providing effective, independent information risk management services. As a Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control, (CRISC), Certified Protection Professional (CPP) and a Payment Card Industry (PCI) Qualified Security Assessor (QSA), Richard possesses extensive hands on skills and experience in designing, implementing and managing and auditing information security programs.

Over the course of his career Richard has served as Director of Security for Phillips, Paris, and Deputy Director of Security for the US Embassy Moscow Reconstruction Project as well as a variety of sensitive security positions within the US government and military. In addition to his work with Orthus, Richard serves on several security technology company boards and security industry advisory councils.

A celebrated public speaker, Richard has presented to hundreds of audiences across the world on a wide variety of information risk management topics and techniques. As a recognised industry authority, he has published numerous articles and white papers. He has also appeared on national and international broadcast news as well as being cited in a wide range of press including the BBC, MSNBC, Radio 4, the Financial Times, Time magazine and various others.

A Confederacy of Dunces (John Kennedy Toole)

Jeremiah Johnson (DVD)

To find out more about Risk Factory click here

To find out more about Risk Crew click here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

 

May 10, 2019

Phill Kimpton has been a Security Consultant for 18 months now, with no previous IT experience. He's passionate to continue developing his skills as a tester and takes great delight in helping others looking to follow the same path. In his spare time he can be found on Twitter, in the gym or jumping out of a perfectly serviceable aircraft.
 
Jenny was delighted to be joined by Phil Kimpton aka phr33fall to talk about skydiving, careers and his determination to get into the information security business.  Phil's story is a real testimony to determination, persistence and focus and he offers great advice on how to find resources, pursue the career you want and skydive(!)
 
A real pleasure to speak to such an inspirational person, thank you so much for a great interview Phil.
 
Can't Hurt Me (David Goggins) 
 
Meaningful Money Podcast 
 
To watch the BSides Glasgow talk, by Phil, click here.
 
To visit Phil's website click here
 
To follow Phil on Twitter click here
 
Don't forget you can also follow Jenny on Twitter by clicking the link here.
May 3, 2019

Thom Langford, the founder of (TL)2 Security Ltd, returns to the show. Listen in as he and Jenny discuss the creation of his consultancy business, his approach to working with clients and his views on the state of the industry. 

To visit the (TL)2 Security Ltd's website click the link here

To visit Thom's personal site, with his presentations, click here

To follow Thom on Twitter click the link here

Don't forget you can also follow Jenny on Twitter by clicking the link here.

Apr 26, 2019

Meadow is a hardware security dark witch with a keen eye and open heart to how normal users take what we, the security nerds, provide them with.

Meadow also specialises in automation for the purpose of removing humans from the equation and is a firm believer in security serving normal users, not the other way around.

Nothing makes her happier than being able to help others, be it with her job, the information security community work or by means of random Twitter threads - maybe apart from banging her head to some dark metal.

To watch Meadow's BSides London talk click the link here

To watch Meadow's BSides Leeds talk click the link here

To follow Meadow on Twitter click the link here

Catch 22 (Joseph Heller)

Fail-Safe (Eugene Burdick)

Dr Strangelove (DVD)

2001: A Space Odyssey

To help the podcast, consider supporting via Patreon, where we produce content and merchandise for the listeners who regularly support the show. 

Become a DAWN RIDER or TRIBE MEMBER and receive bonus shows with analysis, discussion and tips on the Human Factors that impact on the security of us all. To find out more click the link here to go to our Patreon page

Don't forget you can also follow Jenny on Twitter by clicking the link here.

Apr 12, 2019

Leading the sales team at Next Generation Security is the latest incarnation for Paul who has wide industry experience and strong opinions on the information security industry, lifelong learning and how sales professionals should go about doing their job.  Pulling no punches, this is a fascinating interview that covers how this infosec professional sees the industry now, how to start out in your security career and why a people focus still matters even when you deal with the tech.  Thank you for a great interview Paul!

To connect with Paul via LinkedIn click the link here.

To follow Paul on Twitter click the link here

To visit Paul's site click the link here

Sapiens (Yuval Noah Harari) 

Influence (Robert Cialdini)

Pre-Suasion (Robert Cialdini)

Body of Secrets (James Bamford)

The Shadow Factory (James Bamford) 

To help the podcast, consider supporting via Patreon, where we produce content and merchandise for the listeners who regularly support the show. 

Become a DAWN RIDER or TRIBE MEMBER and receive bonus shows with analysis, discussion and tips on the Human Factors that impact on the security of us all. To find out more click the link here to go to our Patreon page

Don't forget you can also follow Jenny on Twitter by clicking the link here

 

 

Apr 5, 2019

Mo has extensive experience in helping organisations with the cultural and behavioural side of cyber security. He has gained this experience in roles across the public and private sector having worked on business as usual activities, security improvement programmes, transformation projects, large scale implementation programmes as well as projects that have had media coverage.

Listen in to Mo and Jenny explore culture in organisations and how best to bring about positive change in any environment. We find out that empathy is a vital tool when trying to understand what people are thinking and feeling, as well as why. 

Deep Work (Cal Newport) 

Enter the Dragon (Blu-Ray)

To check Mo out on LinkedIn click here

To help the podcast, consider supporting via Patreon, where we produce content and merchandise for the listeners who regularly support the show. 

Become a DAWN RIDER or TRIBE MEMBER and receive bonus shows with analysis, discussion and tips on the Human Factors that impact on the security of us all. To find out more click the link here to go to our Patreon page

Don't forget you can also follow Jenny on Twitter by clicking the link here

1 2 3 4 5 Next »