Jessica Barker - Cyber Security ABCs: Delivering Awareness, Behaviours and Culture Change

Provides a fresh and innovative approach to designing and implementing your cybersecurity awareness program. Unlike the majority of books on the subject, the language is easy to digest and the techniques human-focused. I would recommend this book to anyone involved in information security looking to engage the wider organisation and improve cybersecurity awareness.

Helen Mary Jones CITP CISSP , Group Information Security Manager, The Jockey Club

A must read for all CISOs and cybersecurity leaders who want to include people into their cybersecurity strategy. This book has made me realise that our traditional methods to cybersecurity awareness, behaviour and culture has needed a substantial modern approach to empowering people into being a strong link in cybersecurity.

Joseph Carson CISSP , Chief Security Scientist and Advisory CISO, Thycotic

A book about information security awareness, behaviours and cultures, by people who live and breathe all three. Cybersecurity ABCs explores new depths, debunks myths, answers questions and shines a light on what it means to truly address the all-important human-related elements of modern security. The perfect guide for any security leader looking to make their people their strongest security asset.

Michael Hill, Editor , Infosecurity Magazine

An excellent read, and essential for cybersecurity leaders at all levels. This book provides not only easy to understand language, but lived experiences, techniques and considerations to improve awareness, behaviour and culture within an organisation. It provides a holistic approach, starting with examining the behaviour of the cybersecurity professional, before dealing with wider organisational change. As this is the only resource I have seen to offer practical awareness solutions, it also makes it the missing piece from most major, industry-leading certifications.

Gary Cocklin CITP CISSP , Senior Cybersecurity Instructor, UK Royal Air Force (RAF)

This book does what every great business book does it makes you think (differently, laterally, objectively), and helps develop those thoughts into structure. It doesnt provide an ordered checklist, but rather, architects a challenge or puzzle for each reader to solve. All of the clues, tools and techniques are laid out by the authors for each of us to successfully build a solution that is a right fit for our working environment.

Richard Nealon , Trustee of The SABSA Institute

The perfect read for anyone looking to develop their understanding of the human side of cybersecurity. Trying to create meaningful awareness and driving positive changes in behaviour for those who dont live and breathe cybersecurity is a huge challenge that every organisation faces. While there is no magic switch to create a positive cybersecurity culture, using this book as a tool will certainly provide you with the best knowledge, practical tips and insights to help you change the direction of your journey today.

Joe Pettit , Director, Bora

Cybersecurity and psychology make great bed fellows. Digging into awareness, behaviour and culture, the authors address the underlying why that is key to engagement and empowering employees. A pragmatism gained in the field is evident throughout the book making Cybersecurity ABCs a comprehensive manual for the industry professional, that is rich in research and practical advice.

Andrea Manning , Founder and CEO, CyberPie

This deeply-researched discussion of the human side of cybersecurity presents clear and actionable guidance on building a robust security programme that gives employees the knowledge and tools to be the first and best line of defence against cyber threats. The authors draw from their extensive professional experience and academic research to explain techniques for raising awareness, encouraging positive behaviours, and building a corporate culture in which protecting against cyber threats becomes as easy and as natural for the entire workforce as reciting the ABCs. I highly recommend it for anyone with an interest in cybersecurity.

Donald Edwards CISSP , Director of Network Security, Salesforce

Cybersecurity ABCs sparked so many creative ideas for my role in awareness and training, I had to stop reading to go chat to my team about the suggested actions in how to make our awareness program and security culture at HPE more effective and mature.

Joanne OConnor , Cybersecurity Training Program Manager, HPE

This book is extremely important because we tend to focus too much on technology. But as we have seen, a lot of security incidents are not prevented by technology but through awareness, behaviour and culture. What is also really uplifting is to read a book which is not designed for technical people but instead empowers everyday IT-users to help build security and take part in the day to day IT-security work.

David Jacoby , Security Evangelist and Researcher, Kaspersky

BCS, THE CHARTERED INSTITUTE FOR IT

BCS, The Chartered Institute for IT, is committed to making IT good for society. We use the power of our network to bring about positive, tangible change. We champion the global IT profession and the interests of individuals, engaged in that profession, for the benefit of all.

Exchanging IT expertise and knowledge

The Institute fosters links between experts from industry, academia and business to promote new thinking, education and knowledge sharing.

Supporting practitioners

Through continuing professional development and a series of respected IT qualifications, the Institute seeks to promote professional practice tuned to the demands of business. It provides practical support and information services to its members and volunteer communities around the world.

Setting standards and frameworks

The Institute collaborates with government, industry and relevant bodies to establish good working practices, codes of conduct, skills frameworks and common standards. It also offers a range of consultancy services to employers to help them adopt best practice.

Become a member

Over 70,000 people including students, teachers, professionals and practitioners enjoy the benefits of BCS membership. These include access to an international community, invitations to a roster of local and national events, career development tools and a quarterly thought-leadership magazine. Visit www.bcs.org/membership to find out more.

Further information

BCS, The Chartered Institute for IT,

3 Newbridge Square,

Swindon, SN1 1BY, United Kingdom.

T +44 (0) 1793 417 417

(Monday to Friday, 09:00 to 17:00 UK time)

www.bcs.org/contact

http://shop.bcs.org/

BCS Learning and Development Ltd 2021

The right of Jessica Barker, Adrian Davis, Bruce Hallas and Ciarn Mc Mahon to be identified as authors of this work has been asserted by them in accordance with sections 77 and 78 of the Copyright, Designs and Patents Act 1988.

All rights reserved. Apart from any fair dealing for the purposes of research or private study, or criticism or review, as permitted by the Copyright Designs and Patents Act 1988, no part of this publication may be reproduced, stored or transmitted in any form or by any means, except with the prior permission in writing of the publisher, or in the case of reprographic reproduction, in accordance with the terms of the licences issued by the Copyright Licensing Agency. Enquiries for permission to reproduce material outside those terms should be directed to the publisher.