The Behavioral Science of Cybersecurity - Si Pavitt & Steve Dewsnip, MOD
Cybersecurity Sessions8 Dec 2022

The Behavioral Science of Cybersecurity - Si Pavitt & Steve Dewsnip, MOD

If a stranger walked into your workplace and asked you your name and email address, would you co-operate? What if they asked you to open a door for them, or to use your laptop or phone, all whilst wearing a shirt that said “CHALLENGE ME” on it?

This is the malicious floorwalker, an example of the behavioral interventions staged by the UK Ministry of Defence to educate their workforce about security threats and put their teachings into practice. In this episode, Cyril speaks with Si Pavitt (Head of the Ministry of Defence Cyber Awareness, Behaviours and Culture Team) and Steve Dewsnip (Behavioural Scientist at Atkins) to find out how gamifying psychological theory delivers surprising results across as diverse an organization as the UK’s Ministry of Defence.

Guests Si Pavitt

Si Pavitt is the Head of the Ministry of Defence Cyber Awareness, Behaviours and Culture (CyAB&C) team under the 2* Directorate of Cyber Defence and Risk (CyDR). He is primarily responsible for setting the strategic direction for socio-behavioural change as it relates to cyber-secure behaviour across Defence. He also provides consultancy to Defence human vulnerability and social engineering activities.

Stephen Dewsnip

Stephen Dewsnip is a Behavioural Scientist and Organisational Change Consultant from Atkins Global. Working in the highly collaborative MOD Cyber Awareness Behaviours & Culture (CyAB&C) team, Stephen is responsible for the design and delivery of behavioural interventions to promote cyber-secure behaviours.

Key points
  • Why you should incentivize positive actions rather than police security best practices
  • How to use social engineering to reinforce the need to challenge suspicious behavior
  • The importance of protecting psychological wellbeing during behavioral exercises

Avsnitt(35)

Validating AI Value, Securing Supply Chains, Fake Account Creation (feat. Cytix, Risk Ledger)

Validating AI Value, Securing Supply Chains, Fake Account Creation (feat. Cytix, Risk Ledger)

Netacea CISO Andrew Ash welcomes two special guests to the podcast this month to talk about AI adoption and managing third party risk: Thomas Ballin (CTO, Cytix) and Haydn Brooks (CEO, Risk Ledger). I...

7 Dec 202359min

Protecting Privacy in ChatGPT, Credential Stuffing Strikes 23andMe, Freebie Bots

Protecting Privacy in ChatGPT, Credential Stuffing Strikes 23andMe, Freebie Bots

To start this month’s episode, we once again weigh in on AI – this time considering the privacy implications when feeding prompts into generative AI tools like ChatGPT and Bard. We’ll discuss whether ...

19 Okt 202353min

Skiplagging, CAPTCHA vs Bots, Scraper Bots

Skiplagging, CAPTCHA vs Bots, Scraper Bots

This month’s episode takes off with a journey into the controversial world of skiplagging, also known as hidden city flying. Airlines and holiday businesses are taking legal action against passengers ...

14 Sep 202344min

National Risk Register, Encrypted Messaging, Residential Proxy Networks

National Risk Register, Encrypted Messaging, Residential Proxy Networks

This month we begin by examining the 2023 National Risk Register, a public version of the National Security Risk Assessment, which assesses the most serious risks to lives, health, society, critical i...

15 Aug 202348min

Bots vs Consumers, Social Media API Access, Ticket Scalping Legislation

Bots vs Consumers, Social Media API Access, Ticket Scalping Legislation

In this month’s episode, we start by focusing on the real-world impact of bots (scripts used to automate tasks and exploit business logic). In the UK, bots are being used to book up every available dr...

13 Juli 202352min

AI Regulation & Music, Scalping for Immigration Appointments, Credential Stuffing

AI Regulation & Music, Scalping for Immigration Appointments, Credential Stuffing

A fresh Netacea panel of cyber experts are on hand once again to discuss the latest developments in security and bot-related news! This month, in light of OpenAI CEO Sam Altman standing before US sena...

8 Juni 202339min

RSA Conference 2023: Review & Insights from Netacea’s C-Suite

RSA Conference 2023: Review & Insights from Netacea’s C-Suite

In part two of our RSA Conference 2023 series, Netacea CPO Andy Still and CISO Andy Ash return from San Francisco to share their insights from the biggest cybersecurity event of the year. As part of N...

23 Maj 202338min

AI Ethics, Ticket Scalping, Russian Disinformation, Card Cracking

AI Ethics, Ticket Scalping, Russian Disinformation, Card Cracking

Welcome to a new format for the Cybersecurity Sessions! We’ve refocused our podcasts to provide insights into the latest news and trends in cybersecurity, calling on the expertise of Netacea’s threat ...

9 Maj 202356min

Populärt inom Teknik

uppgang-och-fall
elbilsveckan
market-makers
rss-elektrikerpodden
bosse-bildoktorn-och-hasse-p
natets-morka-sida
bilar-med-sladd
rss-laddstationen-med-elbilen-i-sverige
skogsforum-podcast
rss-uppgang-och-fall
gubbar-som-tjotar-om-bilar
developers-mer-an-bara-kod
rss-veckans-ai
rss-technokratin
hej-bruksbil
bli-saker-podden
rss-it-sakerhetspodden
algoritmen
rss-heja-framtiden
rss-en-ai-till-kaffet