BSW #294 – Drew Rose
Full Audio
View Show IndexSegments
1. Defining Human Risk Management – Drew Rose – BSW #294
How do you manage the human side of cybersecurity? Traditionally, security awareness programs have checked this box from a compliance angle but had minimal impact on cyber risk. Human Risk Management (HRM) is transforming this space by connecting an integrated, data-driven approach with personalized security training to deliver quantifiable results. In this session, we'll define HRM, explore how it is being adopted, and review the business case supporting the change. This segment is sponsored by Living Security. Visit https://securityweekly.com/livingsecurity to learn more about them!
Sponsored By
Announcements
Security Weekly listeners save $100 on their RSA Conference 2023 Full Conference Pass! RSA Conference will take place April 24-27 in San Francisco and on demand. To register using our discount code, please visit https://securityweekly.com/rsac2023 and use the code 53UCYBER! We hope to see you there!
Guest
As Living Security’s creative mastermind, Drew Rose combines his experience developing security programs and his love of game design to expertly craft immersive products. He seeks to engage end users and create excitement with his educational experiences and measurable outcomes. Drew is a CISSP with a Bachelors of Science in Cybersecurity who has spent years building and optimizing security programs in the public and private sectors. While serving in the military, Drew learned effective strategies for fighting cybercrime and earned a top-level security rating in the U.S. government. At Living Security, Drew applies his in-depth knowledge to reducing enterprise and personal risk by designing science-based, collaborative security awareness programs.
Hosts
2. CISOs and Hacking, Getting Employee Buy-in, and Listening – BSW #294
In the leadership and communications section, What CISOs Should Know About Hacking in 2023, Getting Employee Buy-In for Organizational Change, Listening — The most important communication skill, and more!
Announcements
Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
Hosts
- 1. CISOs plan to invest in automation in 2023
The 2023 CISO Priorities Flashcard shows that automation investments are a top priority for CISOs. The report revealed that CISOs were looking into additional technologies — including AI and machine learning — to increase the efficiency and effectiveness of their existing cybersecurity talent.
- 2. What CISOs Should Know About Hacking in 2023
As we begin to navigate 2023, the security landscape has transformed from a year ago, let alone a decade ago. The Russian invasion of Ukraine, emerging technologies like Web3 and AI, and new, post-pandemic ways of organizing the workforce have all led to significant shifts in the world of hacking.
In this article, we’ll look at how hacking is different in 2023, some of the key threats CISOs must contend with and some of the best defenses available.
- 3. Getting Employee Buy-In for Organizational Change
Although change is never easy, how leaders approach it makes a significant difference to whether it’s embraced or rejected. By addressing the organizational buy-in context, it’s much easier to move past resistance and stagnation, because your path forward will be shaped by realities rather than banalities. The most successful organizations do this by addressing six components of culture: legitimacy, ownership, relevance, attainability, authenticity, and impartiality.
- 4. Transform Your Leadership Skills: Master Time Management with These Proven Strategies
Effective time management is crucial for leaders to stay ahead of the curve and make the most of their time.
By prioritizing and streamlining tasks, leaders can increase their efficiency and positively impact their team’s performance.
This feature will explore the key elements of successful time management and provide practical tips for implementing them.
- 5. Practice Empathy as a Team
Lifting up both individuals and teams and recognizing emotions builds stronger communities, more trust, and helps people feel cared for. With the environment continuing to feel uncertain, engaging employees in this way is more important than ever. While calls to reduce burnout, implement systemic fixes, and increase retention mount, managers in any industry can implement the authors’ 10 strategies immediately to listen deeply for emotions, reflect that understanding, and provide appreciation, connection, and community. These tactics can be used in both in-person and virtual environments, on a regular basis or as needed, in whichever order works for your team.
- 6. Listening — The most important communication skill
Listening is important in communication because it allows individuals to understand and process the information being conveyed to them. It also allows for active engagement in the conversation and helps build trust and rapport with the speaker. Additionally, effective listening enables individuals to provide appropriate responses, ask clarifying questions, and resolve misunderstandings. Overall, listening is an essential component of effective communication.
