Mitigate human risk and bake security into your organization's culture from top to bottom with insights from leading experts in security awareness, behavior, and culture.
The topic of security culture is mysterious and confusing to most leaders. But it doesn't have to be. In The Security Culture Playbook, Perry Carpenter and Kai Roer, two veteran cybersecurity strategists deliver experience-driven, actionable insights into how to transform your organization's security culture and reduce human risk at every level. This book exposes the gaps between how organizations have traditionally approached human risk and it provides security and business executives with the necessary information and tools needed to understand, measure, and improve facets of security culture across the organization.
The book offers:
- An expose of what security culture really is and how it can be measured
- A careful exploration of the 7 dimensions that comprise security culture
- Practical tools for managing your security culture program, such as the Security Culture Framework and the Security Culture Maturity Model
- Insights into building support within the executive team and Board of Directors for your culture management program
Also including several revealing interviews from security culture thought leaders in a variety of industries, The Security Culture Playbook is an essential resource for cybersecurity professionals, risk and compliance managers, executives, board members, and other business leaders seeking to proactively manage and reduce risk.
"Perry's exploration of security as a cultural force, created by processes and communications but separate from them, is a unique look into precisely that zone of our identity."
- Matt Wallaert, Behavioral Scientist and author of Start At The End: How to Build Products That Create Change
" Perry has his finger on the pulse of security awareness culture and knows how to bring it to life. His real-world expert advice focuses on what is actionable and most essential for protecting your organization right now."
-Rachel Tobac, CEO of SocialProof Security and Friendly Hacker
"I can't think of a better guide for organizational executives trying to reduce their inherent risk via an improved internal security culture."
-Rick Howard, CSO, Chief Analyst, and Senior Fellow at the CyberWire
"I have seen Kai Roer demonstrate his passion and sincere dedication to improving the security culture of organizations for many years ? Kai providing guidance for executives to understand their role and responsibility for creating a secure business ecosystem through using The Security Culture Playbook is a brilliant idea!"
-Rebecca Herold, CEO of The Privacy Professor consultancy, and Privacy & Security Brainiacs SaaS services
"There is no one better placed to present expertise related to security culture than Kai."
-Raj Samani, McAfee Fellow, Chief Scientist