For this episode, Kai returns to the podcast so we can discuss his fascinating 2018 Security Culture Report.
Kai is an engaging and award-winning specialist on security behaviors and security culture, he provides organisations around the world with advice on assessing, building and maintaining good security culture using the Security Culture Framework. Kai is also working with researchers and practitioners worldwide to bring insights on human behavior from a security perspective, thus creating better products, services and organisations.
Link to the 2018 Security Culture Report
Link to the CTLRe website
Link to the Robber's Cave Experiment
Link to Kai's LinkedIn profile
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Stefan works for the Internet Security Team at German company DATEV eG. Having started with computers and starting to be puzzled by reality in the 80s, he started out as a programmer in the early 90s. Since 2000 he has been securing networks and computers for various enterprises in Germany and Scotland.
His main focus nowadays is raising security awareness, coming up with creative solutions to security problems and discussing new ideas concerning threat mitigation. When not trying to do any of that, he is either traveling, procrastinating or trying to beat some hacking challenge. Stefan also writes blog posts (in English and German) on his site https://cyberstuff.org
The Cuckoo's Egg (Cliff Stoll)
Stefan's website - cyberstuff.org
Stefan's BSides Munich Talk - Would You Like Some Honey With That
Stefan on Twitter - @khae
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Jim is a passionate storyteller, using his incredible skills to bring humour and relevance to internal and external communications via film. The entertaining educational videos that Twist and Shout produce make them, and more importantly the messages they are portraying stand out, particularly in the security awareness field.
During the episode, we finally find out who really made Host Unknown the powerhouse it is today. Jim's infectious enthusiasm for creativity also gives us an insight into why he started the company and has made it the success it is today.
Three Guys Walk into a Bar (The Different Press)
Restricted Intelligence website link
Tuesdays with Bernie website link
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
In the first of what will become a semi-regular series, the Tin Foil Hats Club, I chat with a previous guest, Ian Trump, about a few topics. We delve into what some news items actually mean and how they affect the information security industry.
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
This episode is an interview about running internal cyber awareness campaigns within a big firm. It highlights how experts in PR and marketing use film, events and other media to spread the cyber security message within their firm and gives tips and tricks on how to keep the message fresh, current and present in the minds of employees.
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
James has an 18-year career in IT, with eight years in roles within financial services. Using his specialist knowledge he is able to produce working information security policies and procedures from international standards and frameworks such as CIS, NIST, NSA-IA, AusDSD and NESA-IAS.
As a proponent for educating staff in appropriate ways depending on their level and position, he advocates a culture of all working together to help make an organisation safe.
Jame's LinkedIn profile can be found by clicking the link here.
To see the Whizkids click the link here.
RiskyBusiness Episode 471 can be heard by clicking the link here.
Incident Prevention and Incident Response Slideshow can be viewed here by clicking the link here.
The Cuckoo's Egg (Cliff Stoll)
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
MlleLicious is a well-known face in the Information Security industry. She assists organisations who are interested in improving inclusion as well as fostering genuine diversity in both the industry and conferences.
She discusses her extensive experience of the subject, why it's so important to get the message right and her role as a "Brit as a service..."
MlleLicious on Twitter - @MlleLicious
White Fragility (Robin Diangelo)
So You Want To Talk About Race (Ijeoma Oluo)
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
In typically modest fashion, Stu performs "security stuff" at PhotoBox. He found his route into infosec via an unusual route, whilst DJing on the side.
Not content with spending his time learning about the varied issues that are present in the information security world, he has started and run Security Scotland meetup, a regular, relaxed meet up with interesting speakers bringing a unique perspective on issues to a varied audience.
This is Going to Hurt (Adam Kay)
Click here for the link to Stu on LinkedIn
Click here for the link to Stu on Twitter
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Mark is working within Thames Valley Police to help develop and deliver a Cyber-Protect strategy across the force. The aim is for proactive cyber-crime prevention initiatives to be created and utilised.
By working with stakeholders, both within and outside of the force, Mark is helping staff be self-aware of the risks and to pass the message on to friends and family, via the #Tell2 campaign.
For those interested in enquiring about helping the Police out, in this area, Tom Haye's LinkedIn page can be accessed by clicking this link.
To get in touch with Mark, his email is mark.godsland@thamesvalley.pnn.police.uk
Mark's LinkedIn profile - Mark Godsland
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Danielle looks after global infosec and compliance, covering over 1000 stores and business 15K+ employees globally, cross many brands we would not realise are part of the JD Sports group. Before that, she worked at Matalan, as the Commercial Risk and Compliance Manager. Prior to the retail industry, she held various roles in Barclays Bank.
Listen as she recounts her route into infosec, via her own identity theft, how she has encountered cultural differences in her current role, encourages women to enter the industry and be bold.
Eeny Meeny: DI Helen Grace (Book One)
Danielle Ashcroft on LinkedIn - Danielle Ashcroft
Thank you to Dr Dresner for hosting this episode.
Dr Daniel Dresner on LinkedIn - Dr Daniel Dresner
Dr Daniel Dresner on Twitter - Dr Daniel Dresner
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Alan has extensive experience in all facets of security, particularly cyber and enterprise security risk management. He has worked in the armed forces as well as private and public sectors, across a range of industries. This breadth and depth in know-how has given him added insight into business risk management.
Cyber Canon link - Cyber Canon
The Blue Nowhere (Jeffery Deaver)
Alan on LinkedIn - Alan Jenkins
Alan on Twitter - @aj66inuk
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Patricia Vella has extensive experience in creating and running business continuity programmes for a host of large, multi-national organisations across many sectors.
Her work includes setting up the management control system, developing awareness and training programme, embedding BC into business processes and development of strategy, budget, policy and plans.
Patricia's website - Resilience Matters
Patricia on Twitter - @PatriciaVella
Patricia on LinkedIn - Patricia Vella
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Scott regularly appears as a guest expert on television and radio discussing scams and fraud. He gives talks at major organisations as well as educational institutions.
Scott is also a Scambassador for National Trading Standards, work with the TakeFive campaign, most recently in Scam Academy, and give regular talks to community groups, and schools, on how to stay safe online.
Everybody Lies (Seth Stephens-Davidowitz)
'The dangers of "Mishing" and what you can do to prevent it' link
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Dr. Andrea Cullen has developed a radicalization framework, that uses a stepwise approach to radicalization. Organisations and staff such as West Yorkshire Police and Prevent Officers have implemented the outcomes of this work.
Added to that Andrea has helped create a dedicated technical penetration testing lab, where industry and students can work on simulated attacks.
Dr. Andrea Cullen on LinkedIn - Dr. Andrea Cullen
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
In this episode, I am pleased to interview the brilliant Karissa Breen the Founder of KBI, an engineered marketing agency that assists cyber security, tech start-ups and established tech businesses to exponentially grow.
I love Karissa's content and advice and her straightforward attitude to the technology sector and achieving success as a business within it. We talk about her career, her entrepreneurial spirit and how to not be boring in your marketing...You don't want to miss this one.
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Kevin has years of experience from working law enforcement and private industry to enable him to help individuals and organisations protect themselves from threats on the internet.
Kevin was the lead law enforcement advisor to the UK Govenrment for cyber crime protection of the Olympic Games of 2012. Added to that he helped organise the Met Police's cyber crime capabilites.
Kevin Williams's LinkedIn Profile Link
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
This episode asks for the help of the infosec community to vote for their choices in the 2018 “Unsung Heroes” awards at Security Serious with Eskenzi. Yvonne Eskenzi explains the philosophy behind the awards which celebrate those working in cyber security who deserve a pat on the back, and gives details of how you can attend the event and vote for your own unsung heroes!
To vote for your Unsung Hero click the link here
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Emma is a commercial lawyer and Partner at Kemp Little, specialising in emerging tech, cyber, data, AI and diversity in those areas.
By using her skill and experience she is able to advise clients on applying regulations to the everchanging landscape. Added to this Emma advises infrastructure providers on security and breach notification procedures.
Emma uses her experience to provide entertaining and educational talks as well as taking part in conference panels.
Emma on LinkedIn - Emma Wright
Emma on Twitter - @WrightTelcomlaw
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Will is a psychological social engineer, he is able to use the skills learned through studying hypnosis techniques, micro-expressions, emotions and how they can be taken advantage of. By doing so, he proves that the human factor can be more powerful than technology.
The format of this show is slightly different to most, please let me know what you think.
Will on Twitter - @WillSecurity
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Emily Overton uses her skills in influencing and negotiating to help make the issues with records management understandable to all stakeholders. Her enthusiasm helps bring, what could be considered a dry topic, to life.
With her years of experience, as well as working in private and public organisations, allows her to help those who need guidance in managing and storing records in a safe and legal way.
Avengers Infinity War (Blu-Ray)
Emily on Twitter - @RMGirlUK
Emily on LinkedIn - Emily Overton
Emily's website - www.rmgirl.co.uk
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Bryan Campbell is a Senior Threat Analyst at Proofpoint. He is able to articulate detailed technical information to all levels of knowledge and experience.
By investigating malicious software Bryan is able to determine possible mitigations and compensating controls, reviewing the threat intelligence platforms for correlating activity, and then generating reports on that activity for consumption by staff, customers, third parties, and the information security community as a whole.
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Making a return visit to the show, Sarah Clarke, a well-known privacy and security blogger armed with over 15 years practical experience, talks to me in the run-up to the supposed deadline of GDPR.
Sarah helps to explain what it is about but then tells us what else she has been up to since she was last on the show. The voice of reason and common sense, Sarah gives her insights into privacy, risk and security and what she sees might be down the line for the industry.
Infospectives Facebook and Cambridge Analytica article
Sarah on Twitter - @TrialByTruth
Sarah's Infospective website - http://infospectives.co.uk
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Benjamin is a straight-talking sales trainer who cuts through the waffle to get to the point. He is focused on helping sales people do the best they can, as long as they realise they need and, most importantly, want help.
Listen to this entertaining chat as Benjamin talks through how he got the title of the UK's Most Hated Sales Trainer, how he helps people and how this is relevant to many outside of sales too.
You Can't Teach a Kid to Ride a Bike at a Seminar (David Sandler)
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
Jamie is the Founder and CEO of ZoneFox, which is an award-winning Endpoint Monitoring & Threat Detection software that helps protect business-critical assets: data and intellectual property (IP) from malicious and accidental insider threats.
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe
The Human Factor is delighted to welcome back Tracy Maleef, who was one of our first guests on the show and reflects on industry developments and her own career over the year since she last came to talk to us.
Tracy on Twitter - @Infosecsherpa
Tracy's Nuzzel Newsletter - Newsletter
Tracy's Site - http://sherpaintel.com
Don't forget, to get in touch with me either try the contact page of the site or follow me on Twitter, where I can be found at @Jenny_Radcliffe