37 episodes

Welcome to the Re-Thinking the Human Factor podcast. It’s a podcast for information security professionals, where we will be asking our guests to share thoughts and insights on security awareness, behaviour and culture.

Our guests come, predominately, from outside of the security industry. They all specialise in elements of awareness, behaviour and culture, or they have effectively tackled similar challenges, in their own industry or careers. The one thing that unites them all is their willingness to share their experience in the hope it might give our audience food for thought.

Re-thinking The Human Factor with Bruce Hallas Marmalade Box

    • Technology
    • 4.9, 14 Ratings

Welcome to the Re-Thinking the Human Factor podcast. It’s a podcast for information security professionals, where we will be asking our guests to share thoughts and insights on security awareness, behaviour and culture.

Our guests come, predominately, from outside of the security industry. They all specialise in elements of awareness, behaviour and culture, or they have effectively tackled similar challenges, in their own industry or careers. The one thing that unites them all is their willingness to share their experience in the hope it might give our audience food for thought.

    A Conversation With Award Winning CISO, Andrew Rose.

    A Conversation With Award Winning CISO, Andrew Rose.

    A conversation with award-winning CISO, Andrew Rose  
    ANDREW ROSE joins us for Series 3, Episode 12 of the Re-Thinking the Human Factor Podcast. Join us for this straight forward discussion with an award winning CISO who transformed security management for three major organisations.
     
    With his extensive background, Andrew is a strong relationship manager who is able to develop and lead teams, driving initiatives forward with a style that is facilitative, tenacious and positive. Able to communicate, co-ordinate and influence effectively at all levels and respond to challenges with dedication, enthusiasm and pragmatism. 
     
    Andrew Rose is strongly focussed on sensible, cost effective security solutions being used to enable a business to innovate and develop.
     
     
    AS YOU LISTEN TO THE EPISODE, IF YOU FIND YOURSELF WANTING TO IMPLEMENT SOME OF THE INSIGHTS YOU’RE GAINING BUT YOU FEEL YOU NEED A LITTLE HELP, PLEASE DO GET IN TOUCH WITH ME AT:
     
     
    bruce.hallas@re-thinkingthehumanfactor.com
     
     
    JOIN ANDREW ROSE AND BRUCE HALLAS AS THEY DISCUSS:
    The early days of cyber security and how people almost gave up on the human factor.

    How the idea of applying the knowledge of human awareness came into play.

    Challenges today’s cyber security managers face.

    How can you be safe if you are not secure?

    The key indicators to a healthy security culture.

    The influences that help to drive our decision-making and behaviour.

    Designing cyber security awareness and training with the human in mind. How to win over people to try something new. How hackers think.  
     
    RESOURCES AND TOPICS FOR FURTHER STUDY
    B.J. Fogg and his new book, "Tiny Habits" The Analogies Project  
    MORE ABOUT ANDREW ROSE:
    LinkedIn Twitter  
     
    Please subscribe to the podcast in iTunes, and if you enjoyed this interview, please share with your friends and colleagues and leave a 5 star rating and review.
     
    Thanks for listening and sharing.
     
    Bruce & The Re-thinking the Human Factor Podcast Team

    • 1 hr 3 min
    Know Your Cyber Security Risks with PRUDENCE SMITH.

    Know Your Cyber Security Risks with PRUDENCE SMITH.

    Know your cyber security risks with Prudence Smith  
    PRUDENCE SMITH joins us for Series 3, Episode 11 of the Re-Thinking the Human Factor Podcast. Join us as we discuss risk assessment within a changing cyber landscape. We know our listeners are going to glean a great deal from this discussion this week and enjoy the fruits of Prudence’s years of experience.
     
    PRUDENCE SMITH is a trusted cyber and security risk professional who has been working in security, technology and compliance in a career spanning over 20 years, working in large multinational financial institutions, senior management, client and government liaison, high-risk targets, intelligence and SMB infrastructures.
     
    So put the kettle on, sit back and enjoy this riveting discussion as Prudence explains the importance of understanding the ever changing landscape of cyber security risk.
     
     
    AS YOU LISTEN TO THE EPISODE, IF YOU FIND YOURSELF WANTING TO IMPLEMENT SOME OF THE INSIGHTS YOU’RE GAINING BUT YOU FEEL YOU NEED A LITTLE HELP, PLEASE DO GET IN TOUCH WITH ME AT:
     
    iwanttoknowmore@re-thinkingthehumanfactor.com
     
     
    TOPICS DISCUSSED:
    When/why human behaviour become a focus in the cyber security industry.

    How an audit lead to the investigation into the human factor.

    Cyber security awareness.

    Risk-based profiling.
      Cyber Security Education, Awareness and Culture.

    What impact events such as the Coronavirus have on culture and awareness.  
     
    RESOURCES AND TOPICS FOR FURTHER STUDY
    RSA Conference The Analogies Project Consumer Data Research Report  
    MORE ABOUT TERRY O’REILLY:
    LinkedIn  Twitter  
     
     
     
    Please subscribe to the podcast in iTunes, and if you enjoyed this interview, please share with your friends and colleagues and leave a 5 star rating and review.
     
    Thanks for listening and sharing.
     
    Bruce & The Re-thinking the Human Factor Podcast Team

    • 47 min
    Marketing Strategy Applied To Cyber Security with TERRY O’REILLY.

    Marketing Strategy Applied To Cyber Security with TERRY O’REILLY.

    Marketing Strategy Applied To Cyber Security with TERRY O’REILLY
     
    TERRY O’REILLY joins us for Series 3, Episode 10 of the Re-Thinking the Human Factor Podcast. Join us as we delve into the brilliant marketing mind of our guest so we can apply this understanding to our industry of cyber security and awareness.
     
    Terry O’Reilly is the host of CBC Radio's Under the Influence. Co-Founder of The Apostrophe Podcast Company. He is also an engaging speaker and author to boot, with over 35 years of experience as an adman. He discusses the bigger issues of marketing and how it affects the public.
     
    But most of all, Terry connects the dots when it comes to pop culture, human nature and the numerous gales and undertows that effect communication. Sprinkled, of course, with the humour required to deal with it all. 
     
    AS YOU LISTEN TO THE EPISODE, IF YOU FIND YOURSELF WANTING TO IMPLEMENT SOME OF THE INSIGHTS YOU’RE GAINING BUT YOU FEEL YOU NEED A LITTLE HELP, PLEASE DO GET IN TOUCH WITH ME AT:
    iwanttoknowmore@re-thinkingthehumanfactor.com
     
     
    JOIN TERRY O’REILLY AND BRUCE HALLAS AS THEY DISCUSS:
    Marketing, and its application to cyber security and awareness. Shish Kebab Theory. The long game of cyber security awareness and training.

    Strategies for effectively marketing cyber security campaigns. How to gain an understanding of your target audience. Are people gathering data frequently enough? Understanding and aligning your company’s values with your cyber security goals   
     
     
    RESOURCES AND TOPICS FOR FURTHER STUDY
    This I Know - By Terry O'Reilly The Analogies Project  
    MORE ABOUT TERRY O’REILLY:
    LinkedIn Company LinkedIn Page Under The Influence Podcast  
     
    Please subscribe to the podcast in iTunes, and if you enjoyed this interview, please share with your friends and colleagues and leave a 5 star rating and review.
     
    Thanks for listening and sharing.
     
    Bruce & The Re-thinking the Human Factor Podcast Team

    • 1 hr 2 min
    Why we need to re-think the human factor in security, with Bruce Hallas

    Why we need to re-think the human factor in security, with Bruce Hallas

    Why we need to re-think the human factor in security, with Bruce Hallas
     
    Bruce Hallas sits in the hot seat for a change as Alexia of Marmalade Box grills him, for this: Series 3, Episode 4 of the Re-Thinking the Human Factor Podcast. Having received a lot of emails asking us for more information about Bruce Hallas, the host of this podcast, Alexia agreed to put Bruce through some viewer lead questioning in the hopes of delving deeper into his background and expertise.
     
    Having trained in accounting and law, Bruce started his work life in business development, outside the realms of tech, and found himself passionate about security awareness and human behaviour. Via a series of questioning, 7 years ago Bruce was lead to his groundbreaking research that lead to his book ‘Rethinking The Human Factor’. Apart from his work as a researcher and author, he also runs Marmalade Box, a company dedicated to helping organisations cultivate and design a positive security awareness by raising awareness and influencing behaviours.
     
    Bruce is an expert in reducing risk and helping companies design security processes that reduce the guesswork from the human factor. We know you will enjoy listening to how and why Bruce is so passionate about his chosen occupation and how you can benefit from his vast understanding.
     
    AS YOU LISTEN TO THE EPISODE, IF YOU FIND YOURSELF WANTING TO IMPLEMENT SOME OF THE INSIGHTS YOU’RE GAINING BUT YOU FEEL YOU NEED A LITTLE HELP, PLEASE DO GET IN TOUCH WITH ME AT:
    iwanttoknowmore@re-thinkingthehumanfactor.com
     
    JOIN BRUCE HALLAS AND ALEXIA AS THEY DISCUSS:
    The questions Bruce asked himself when he started his research journey. How understanding the human factor allows for better engagement.  Breaking down the entire system within information security to better the process.   The Analogies Project and how analogies help in shaping culture and behaviour.

    Who benefits the most from the Rethinking The Human Factor research?

    Designing with the human in mind. Does evidence point to the validity of the frame work created from the research done in Rethinking The Human Factor? The importance of establishing a cohesive vision as an anchor. How personal values influence culture. What can my organisation do to benefit from this?  
    RESOURCES AND TOPICS FOR FURTHER STUDY
    Rethinking The Human Factor by Bruce Hallas Nudge by Richard H. Thaler The Power Of Analogy by Dieter Wanner  
    MORE ABOUT BRUCE HALLAS:
    LinkedIn Marmalade Box The Analogies Project  
    Please subscribe to the podcast in iTunes, and if you enjoyed this interview, please share with your friends and colleagues and leave a 5 star rating and review.
     
    Thanks for listening and sharing.
     
    Bruce & The Re-thinking the Human Factor Podcast Team

    • 1 hr 9 min
    Taking Risks To Reduce Risk, with ERIC RAVELLO.

    Taking Risks To Reduce Risk, with ERIC RAVELLO.

    Taking risks to reduce risk, with Eric Ravello  
    If criminals are doing research into human behaviour then they are designing phishing attacks with the human in mind. As attackers change their attacks, so must cyber security providers change their methods of dealing with them.
     
    Eric Ravello joins us for Episode 33 of the Re-Thinking the Human Factor Podcast. We are holding strong to our promise to bring you top notch guests this week, we cannot wait to delve into this podcast topic.
    Eric has more than 15 years of experience within cybersecurity, acquired with multiple programs in international environments. Eric loves to inspire confidence and create cooperation for people in long term strategy. He believes we can achieve a better environment by designing and managing positive security culture programs that respect all individuals. 
    To transform his environment, he delivers attractive and engaging campaigns for all or tailored to specific business functions. He is not afraid to go against the grain and take risks.
     
    AS YOU LISTEN TO THE EPISODE, IF YOU FIND YOURSELF WANTING TO IMPLEMENT SOME OF THE INSIGHTS YOU’RE GAINING BUT YOU FEEL YOU NEED A LITTLE HELP, PLEASE DO GET IN TOUCH WITH ME AT:

    iwanttoknowmore@re-thinkingthehumanfactor.com
     
    RESOURCES AND TOPICS FOR FURTHER STUDY
    Re-Thinking The Human Factor E-Book The Analogies Project  
    MORE ABOUT ERIC RAVELLO:
    LinkedIn  
    Please subscribe to the podcast in iTunes, and if you enjoyed this interview, please share with your friends and colleagues and leave a 5 star rating and review.
    Thanks for listening and sharing.
    Bruce & The Re-thinking the Human Factor Podcast Team

    • 1 hr 5 min
    Simplifying Cyber Security, with Neil Frost

    Simplifying Cyber Security, with Neil Frost

    NEIL FROST joins us for Series 3, Episode 7 of the Re-Thinking the Human Factor Podcast. Join us for this straight forward discussion on how to cultivate easy to digest security campaigns that have the lasting effect of benefiting culture.
    Neil Frost was part of the team responsible for Security Awareness and Culture at the HMRC (the UK Tax Office). Before that he worked at the UK Police Force on Training and Awareness. 
     
    AS YOU LISTEN TO THE EPISODE, IF YOU FIND YOURSELF WANTING TO IMPLEMENT SOME OF THE INSIGHTS YOU’RE GAINING BUT YOU FEEL YOU NEED A LITTLE HELP, PLEASE DO GET IN TOUCH WITH ME AT:
     
    iwanttoknowmore@re-thinkingthehumanfactor.com
     
    JOIN NEIL FROST AND BRUCE HALLAS AS THEY DISCUSS:

    Defense against cyber attacks.

    Tips to make your cyber security training efforts more effective.

    How budgeting effects training outcomes.

    How perceptions can block the flow of information.

    Using data to create security training around the needs of your organization rather than throwing something against the wall and hoping it sticks.
    How to get the real data rather then answers given "just to please".
    Implementing lasting behavioural change through messaging and stories. Story telling as a means of communication is hard wired into human behaviour. Finding the right tools such as software platforms and technology to create your solutions.  
    RESOURCES AND TOPICS FOR FURTHER STUDY
    Wired For Story
    The Analogies Project
     
    MORE ABOUT NEIL FROST:
    LinkedIn
    Bobs Business
    Bobs Business (Twitter)
     
     
    Please subscribe to the podcast in iTunes, and if you enjoyed this interview, please share with your friends and colleagues and leave a 5 star rating and review.
     
    Thanks for listening and sharing.
     
    Bruce & The Re-thinking the Human Factor Podcast Team

    • 53 min

Customer Reviews

4.9 out of 5
14 Ratings

14 Ratings

parentology ,

Amazing insight o on Re-thinking the Human Factor

Stumbled upon this podcast and it’s brilliant. Detailed, practical and innovative; these insightful interviews with experts give a fresh and engaging perspective on behavioural factors within information security. Excellent ideas and views that are pertinent to anyone working within the field of information security. Resources like these are akin to gold dust!

Lou_loves_to_pole ,

So many insightful, thought-provoking takeaways!

Recently rediscovered this podcast on iTunes and so have been listening and re-listening and there’s so much to take away from these conversations for us security awareness professionals! I have shared with my colleagues in security, policy and change already! Great content - thank you, Bruce and team.

David R Stranack ,

1 word := AWESOME

If you are looking for perceptive, practical and forward thinking insights into the world of information security management and 'ALL' it encompasses, then look no further than these Marmalade Box podcasts. I have been using them to obtain valuable insights whilst reading for my Information Security Masters project and they consistently prove to be invaluable. The guys at Marmalade Box go way beyond the normal realms of simple cybersecurity in organisations, as they weave together what would normally be very disparate elements of the human aspects of security and privacy to consistently deliver salient and thought provoking facts. These can be used, not only as the basis for additional research but also to obtain a better understanding of the holistic nature of culture within organisations as the human factors of information security awareness interact with each other on a daily basis. I believe its broad-minded logic like this that will allow us to design, implement and maintain successful information security programmes well into the 21st century.

Ever found yourself thinking about using comics to deliver effective security awareness campaigns or what it would be like describing what living in the air is like to a fish? I hadn’t either until I listened to these podcasts and if you want to better understand the relevance of this progressive thinking, you really need to download and listen to these podcasts ASAP, I promise you will not be disappointed.

Top Podcasts In Technology

Listeners Also Subscribed To