The Path of Least Resistance- Applying Behavioural Economics to Information Security

Bridget Kenyon, EMEA CISO and Information Security Programmes Lead, Thales DIS

Do you get frustrated when people make irrational decisions on security? In this session, I'll cover the underlying concepts of behavioural economics, then show how that applies to the area of information risk, and finally explain how we can use this understanding to improve security in a very practical sense.


Cybersecurity Awareness and Training for the HE Sector

Dr Ismini Vasileiou, Associate Professor in Information Systems, De Montfort University

Any HE institution holds large sets of personal data. From student data, to staff data, to financial documents and strategic decisions, academics often forget that they are dealing with sensitive data on daily basis. We have also noticed that many HE Institutions were hit by cyber-attacks and almost everyone has had to deal with aspects of Social Engineering. What can we do at local level but also at institutional level to educate and raise awareness? The talk will provide an overview of the dangers an HE Institution can face these days and the importance of Security Awareness and Training. It will provide not just some already available frameworks, but also how to put the emphasis on the awareness and the training.


Breaking down a Ransomware attack

Graham Hill, Information Security Manager, University of West London

Graham Hill describes the University of West London’s experience of a severe ransomware attack last year, and shares some of the key lessons learned.