- Conference Organizers
- Registration Information
- Purchase the Box Set
- Why Attend LISA '13?
- Convince Your Boss
- Co-located Events
- Students and Grants
- Sponsorship and Exhibition
- Call for Participation
- For Participants
- Help Promote!
- Past Conferences
You are here
A New Model: Advancing Organizational Security Through Peacebuilding
Wilson C Room
Why is the security industry so full of fail? We spend millions of dollars on firewalls, IPS, IDS, DLP, professional penetration tests and assessments, and vulnerability and compliance tools, and at the end of the day, the weakest link is the user and his or her inability to make the right choices. It's enough to make a security engineer cry.
The one thing you can depend upon in an enterprise is that many of your users, even with training, will still make the wrong choices. They will violate BYOD restrictions, click on links they shouldn't, respond to phishing scams, open documents without thinking, post too much information on Twitter and Facebook, use their pet's name as passwords, etc. But what if this isn't because users hate us or are too stupid? What if all our ignored policies and procedures regarding the best security practices have more to do with our failure to understand modern neuroscience and the human mind's resistance to change?
Humans are wired to be emotional beings. Emotions influence most of our decisions, good and bad. In failing to understand how this is at the root of user non-compliance, no matter how much money we spend on expensive hardware and software, we will fail to achieve the goal of good organizational security.
Attendees will have the opportunity to practice various communication methods and conflict resolution skills that will improve their ability to motivate change in their organizations.
Sysadmins and security professionals who need tools to improve user security compliance in their organizations.
Critical mind hacks for improving your professional lives as well as your relationships with others, achieved through "hacking the human," not by software or hardware.
- The affective neuroscience behind risky behavior
- Collaborative communication methods and conflict resolution skills to crowdsource the goal of organizational security