: Brett Bogan, Sr Director Security Operations , RELX
Three years ago, our security awareness program consisted of a few videos on a website and the occasional email blasts from our Information Security team. Users did not have the tools or the knowledge to respond to security threats; the organization was failing them.
Over a relatively short period of time, by providing tools and techniques to self-mitigate risk, we have increased the awareness of our users. We will discuss lessons learned during the journey, and we will demonstrate metrics of our success, including behavior change metrics.
As it only takes one click of a mouse to lead to an incident, our security awareness program is constantly evolving. While threat actors continue to find success using tried and true methods, it is critical to understand how disruptive technologies, such as Artificial Intelligence, can be used by threat actors to beat our defenses.
Attendees will walk away with specific recommendations on establishing a cyber defense security awareness program, getting executive support and how to prove to executives mitigation of business risk, while staying relevant and on the forefront of emerging trends.
- How threat actors are using both old and emerging technologies such as AI and ML to get past defenses
- Best practices for developing a successful security awareness and training program
- Real-world lessons learned from our phishing mitigation journey
- Getting executive support and proving to executives the mitigation of business risk
Technical Level: Low