Transformational Security Awareness

Author: Perry Carpenter
Publisher: John Wiley & Sons
ISBN: 1119566355
Category : Computers
Languages : en
Pages : 368

Book Description
Expert guidance on the art and science of driving secure behaviors Transformational Security Awareness empowers security leaders with the information and resources they need to assemble and deliver effective world-class security awareness programs that drive secure behaviors and culture change. When all other processes, controls, and technologies fail, humans are your last line of defense. But, how can you prepare them? Frustrated with ineffective training paradigms, most security leaders know that there must be a better way. A way that engages users, shapes behaviors, and fosters an organizational culture that encourages and reinforces security-related values. The good news is that there is hope. That’s what Transformational Security Awareness is all about. Author Perry Carpenter weaves together insights and best practices from experts in communication, persuasion, psychology, behavioral economics, organizational culture management, employee engagement, and storytelling to create a multidisciplinary masterpiece that transcends traditional security education and sets you on the path to make a lasting impact in your organization. Find out what you need to know about marketing, communication, behavior science, and culture management Overcome the knowledge-intention-behavior gap Optimize your program to work with the realities of human nature Use simulations, games, surveys, and leverage new trends like escape rooms to teach security awareness Put effective training together into a well-crafted campaign with ambassadors Understand the keys to sustained success and ongoing culture change Measure your success and establish continuous improvements Do you care more about what your employees know or what they do? It's time to transform the way we think about security awareness. If your organization is stuck in a security awareness rut, using the same ineffective strategies, materials, and information that might check a compliance box but still leaves your organization wide open to phishing, social engineering, and security-related employee mistakes and oversights, then you NEED this book.

Transformational Security Awareness

Author: Perry Carpenter
Publisher: John Wiley & Sons
ISBN: 1119566371
Category : Computers
Languages : en
Pages : 368

8 Steps to Better Security

Author: Kim Crawley
Publisher: John Wiley & Sons
ISBN: 1119811244
Category : Computers
Languages : en
Pages : 155

Book Description
Harden your business against internal and external cybersecurity threats with a single accessible resource. In 8 Steps to Better Security: A Simple Cyber Resilience Guide for Business, cybersecurity researcher and writer Kim Crawley delivers a grounded and practical roadmap to cyber resilience in any organization. Offering you the lessons she learned while working for major tech companies like Sophos, AT&T, BlackBerry Cylance, Tripwire, and Venafi, Crawley condenses the essence of business cybersecurity into eight steps. Written to be accessible to non-technical businesspeople as well as security professionals, and with insights from other security industry leaders, this important book will walk you through how to: Foster a strong security culture that extends from the custodial team to the C-suite Build an effective security team, regardless of the size or nature of your business Comply with regulatory requirements, including general data privacy rules and industry-specific legislation Test your cybersecurity, including third-party penetration testing and internal red team specialists Perfect for CISOs, security leaders, non-technical businesspeople, and managers at any level, 8 Steps to Better Security is also a must-have resource for companies of all sizes, and in all industries.

We Have Root

Author: Bruce Schneier
Publisher: John Wiley & Sons
ISBN: 1119643465
Category : Computers
Languages : en
Pages : 304

Book Description
A collection of popular essays from security guru Bruce Schneier In his latest collection of essays, security expert Bruce Schneier tackles a range of cybersecurity, privacy, and real-world security issues ripped from the headlines. Essays cover the ever-expanding role of technology in national security, war, transportation, the Internet of Things, elections, and more. Throughout, he challenges the status quo with a call for leaders, voters, and consumers to make better security and privacy decisions and investments. Bruce’s writing has previously appeared in some of the world's best-known and most-respected publications, including The Atlantic, the Wall Street Journal, CNN, the New York Times, the Washington Post, Wired, and many others. And now you can enjoy his essays in one place—at your own speed and convenience. • Timely security and privacy topics • The impact of security and privacy on our world • Perfect for fans of Bruce’s blog and newsletter • Lower price than his previous essay collections The essays are written for anyone who cares about the future and implications of security and privacy for society.

A Whole New Mind

Author: Daniel H. Pink
Publisher: Penguin
ISBN: 1101157909
Category : Psychology
Languages : en
Pages : 305

Book Description
New York Times Bestseller An exciting--and encouraging--exploration of creativity from the author of When: The Scientific Secrets of Perfect Timing The future belongs to a different kind of person with a different kind of mind: artists, inventors, storytellers-creative and holistic "right-brain" thinkers whose abilities mark the fault line between who gets ahead and who doesn't. Drawing on research from around the world, Pink (author of To Sell Is Human: The Surprising Truth About Motivating Others) outlines the six fundamentally human abilities that are absolute essentials for professional success and personal fulfillment--and reveals how to master them. A Whole New Mind takes readers to a daring new place, and a provocative and necessary new way of thinking about a future that's already here.

Rational Cybersecurity for Business

Author: Dan Blum
Publisher: Apress
ISBN: 9781484259511
Category : Computers
Languages : en
Pages : 330

Book Description
Use the guidance in this comprehensive field guide to gain the support of your top executives for aligning a rational cybersecurity plan with your business. You will learn how to improve working relationships with stakeholders in complex digital businesses, IT, and development environments. You will know how to prioritize your security program, and motivate and retain your team. Misalignment between security and your business can start at the top at the C-suite or happen at the line of business, IT, development, or user level. It has a corrosive effect on any security project it touches. But it does not have to be like this. Author Dan Blum presents valuable lessons learned from interviews with over 70 security and business leaders. You will discover how to successfully solve issues related to: risk management, operational security, privacy protection, hybrid cloud management, security culture and user awareness, and communication challenges. This book presents six priority areas to focus on to maximize the effectiveness of your cybersecurity program: risk management, control baseline, security culture, IT rationalization, access control, and cyber-resilience. Common challenges and good practices are provided for businesses of different types and sizes. And more than 50 specific keys to alignment are included. What You Will Learn Improve your security culture: clarify security-related roles, communicate effectively to businesspeople, and hire, motivate, or retain outstanding security staff by creating a sense of efficacy Develop a consistent accountability model, information risk taxonomy, and risk management framework Adopt a security and risk governance model consistent with your business structure or culture, manage policy, and optimize security budgeting within the larger business unit and CIO organization IT spend Tailor a control baseline to your organization’s maturity level, regulatory requirements, scale, circumstances, and critical assets Help CIOs, Chief Digital Officers, and other executives to develop an IT strategy for curating cloud solutions and reducing shadow IT, building up DevSecOps and Disciplined Agile, and more Balance access control and accountability approaches, leverage modern digital identity standards to improve digital relationships, and provide data governance and privacy-enhancing capabilities Plan for cyber-resilience: work with the SOC, IT, business groups, and external sources to coordinate incident response and to recover from outages and come back stronger Integrate your learnings from this book into a quick-hitting rational cybersecurity success plan Who This Book Is For Chief Information Security Officers (CISOs) and other heads of security, security directors and managers, security architects and project leads, and other team members providing security leadership to your business

Venture Capital and the Finance of Innovation

Author: Andrew Metrick
Publisher: John Wiley and Sons
ISBN: 1118137884
Category : Business & Economics
Languages : en
Pages : 1153

Book Description
This useful guide walks venture capitalists through the principles of finance and the financial models that underlie venture capital decisions. It presents a new unified treatment of investment decision making and mark-to-market valuation. The discussions of risk-return and cost-of-capital calculations have been updated with the latest information. The most current industry data is included to demonstrate large changes in venture capital investments since 1999. The coverage of the real-options methodology has also been streamlined and includes new connections to venture capital valuation. In addition, venture capitalists will find revised information on the reality-check valuation model to allow for greater flexibility in growth assumptions.

The Self-Evolved Leader

Author: Dave McKeown
Publisher: Greenleaf Book Group
ISBN: 162634681X
Category : Business & Economics
Languages : en
Pages : 241

Book Description
A practical guide to help executives and managers at all levels adopt a new way of leading in our fast-moving world. In this easy-to-read yet impactful book, leadership expert Dave McKeown dispels many of the leadership mindsets and approaches that are no longer effective in our organizations. In their place, he provides a compelling case for a new kind of leadership focused on achieving the team's common goals and, in doing so, helping them become the best versions of themselves. McKeown outlines the three key steps to help make the transition from Heroic Leadership to Self-Evolved Leadership, and concludes with a comprehensive 15-week program designed to help you evolve your leadership style with the kind of flexible, adaptable best practices that work to deliver results, company-wide. This book is ideal for any leader looking to: Stop working in the weeds and think more strategically Build empowerment deep in their team Free up their headspace to be more creative Deliver lasting results for their team and organization

Practical Social Engineering

Author: Joe Gray
Publisher: No Starch Press
ISBN: 1718500998
Category : Computers
Languages : en
Pages : 241

Book Description
A guide to hacking the human element. Even the most advanced security teams can do little to defend against an employee clicking a malicious link, opening an email attachment, or revealing sensitive information in a phone call. Practical Social Engineering will help you better understand the techniques behind these social engineering attacks and how to thwart cyber criminals and malicious actors who use them to take advantage of human nature. Joe Gray, an award-winning expert on social engineering, shares case studies, best practices, open source intelligence (OSINT) tools, and templates for orchestrating and reporting attacks so companies can better protect themselves. He outlines creative techniques to trick users out of their credentials, such as leveraging Python scripts and editing HTML files to clone a legitimate website. Once you’ve succeeded in harvesting information about your targets with advanced OSINT methods, you’ll discover how to defend your own organization from similar threats. You’ll learn how to: Apply phishing techniques like spoofing, squatting, and standing up your own web server to avoid detection Use OSINT tools like Recon-ng, theHarvester, and Hunter Capture a target’s information from social media Collect and report metrics about the success of your attack Implement technical controls and awareness programs to help defend against social engineering Fast-paced, hands-on, and ethically focused, Practical Social Engineering is a book every pentester can put to use immediately.

The Fearless Organization

Author: Amy C. Edmondson
Publisher: John Wiley & Sons
ISBN: 1119477263
Category : Business & Economics
Languages : en
Pages : 256

Book Description
Conquer the most essential adaptation to the knowledge economy The Fearless Organization: Creating Psychological Safety in the Workplace for Learning, Innovation, and Growth offers practical guidance for teams and organizations who are serious about success in the modern economy. With so much riding on innovation, creativity, and spark, it is essential to attract and retain quality talent—but what good does this talent do if no one is able to speak their mind? The traditional culture of “fitting in” and “going along” spells doom in the knowledge economy. Success requires a continuous influx of new ideas, new challenges, and critical thought, and the interpersonal climate must not suppress, silence, ridicule or intimidate. Not every idea is good, and yes there are stupid questions, and yes dissent can slow things down, but talking through these things is an essential part of the creative process. People must be allowed to voice half-finished thoughts, ask questions from left field, and brainstorm out loud; it creates a culture in which a minor flub or momentary lapse is no big deal, and where actual mistakes are owned and corrected, and where the next left-field idea could be the next big thing. This book explores this culture of psychological safety, and provides a blueprint for bringing it to life. The road is sometimes bumpy, but succinct and informative scenario-based explanations provide a clear path forward to constant learning and healthy innovation. Explore the link between psychological safety and high performance Create a culture where it’s “safe” to express ideas, ask questions, and admit mistakes Nurture the level of engagement and candor required in today’s knowledge economy Follow a step-by-step framework for establishing psychological safety in your team or organization Shed the “yes-men” approach and step into real performance. Fertilize creativity, clarify goals, achieve accountability, redefine leadership, and much more. The Fearless Organization helps you bring about this most critical transformation.