Compromising Positions - A Technology Podcast

This week we are joined by Helena Hill, a seasoned UX Strategist and Consultant and AI expert with a wealth of experience spanning diverse clients, from pre-start-ups to global industry giants.Last week Helena taught us how we in the cybersecurity team can effectively use the User experience team, and its principles to improve our security controls and create a better journey. If you’ve not listened to that episode yet, do check it out. This episode we’re asking Helena about her other expertise in AI and how cybersecurity teams can use tools like ChatGPT to make our lives easierWe’ll touch upon cybersecurity concerns around AI, but mostly this will be a practical episode on how to get the most out of these exciting tools.This episode concludes season 1 and we’d like to say a huge thank you to everyone who has supported this journey, either by just listening, sharing, subscribing, leaving a review or providing feedback. We can’t thank you enough for lending your ears and your thoughts on this rather unusual approach to talking about cybersecurity by only speaking to non-cybersecurity professionals! And of course, a huge thank you to all our kind guests who have been so generous with their time and expertise. But this is not the end of compromising positions! We have enough episodes already recorded to last us well into summer next year and we intend to keep bring you fantastic guests and new insights for all of 2024. We’re going to a few weeks off in January but you won’t have to go cold turkey! We’ll be releasing a AI special mini-series, shorts for our 12 days of breachmas and trailers for season 2! Links to everything Helena discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review.Follow us on all good podcasting platforms and via our YouTube channel, and don't forget to share on LinkedIn and in your teams.It really helps us spread the word and get high-quality guests, like Helena, on future episodes. We hope you enjoyed this episode - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I the compromising position here?’

This week we are joined by Helena Hill, a seasoned UX Strategist and Consultant and AI expert with a wealth of experience spanning diverse clients, from pre-start-ups to global industry giants.In this episode, we explore the fascinating topic of UX and cybersecurity.We’re going to learn from the UX function to see how we can create a better user experience for people on their security journey, learn how to get buy-in from the business about implementing controls such as MFA,  and how to ‘sell’ our security value offering as a positive user experience. And of course, crucially, how to take those first few steps to engage with the UX team!Key Takeaways for this episode are:UX and Cybersecurity share the same challenge of educating and getting buy-in from the organization to elevate their importance on the business agenda.Understanding the user journey is crucial for both UX and Cybersecurity teams to build a better usable security journey.Empathy mapping helps build a picture of a person and understand their needs and expectations.Leveraging user expectations and their ease of use thresholds can help create appropriate security controls.Collaboration between UX/UR and Cybersecurity teams can lead to innovation in the security space and improve the user experience.This is the first of our two part conversation with Helena, next week we will be talking about her other specialism in AI, which kicks off our Christmas miniseries on AILinks to everything Helena discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review.Follow us on all good podcasting platforms and via our YouTube channel, and don't forget to share on LinkedIn and in your teams.It really helps us spread the word and get high-quality guests, like Helena, on future episodes. We hope you enjoyed this episode - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I the compromising position here?’Show NotesWhat is a Persona Non Grata? Developed at DePaul University, the Persona non-grata approach makes threat modelling more tractable by asking users to focus on attackers, their motivations, and their abilities. Once this step is completed, users are asked to brainstorm about targets and likely attack mechanisms that the attackers would deploy. Read more: Cyber Threat Modelling: An Evaluation of Three Methods  by FORREST SHULL AND NANCY R. MEADDownloadable Empathy MapThe stat 1 cybersecurity professional per 100 developers can be found in Toby Irvine’s article The RatioAn article explaining Dunbar’s NumberA Usability Study of Five Two-Factor Authentication Methods By Ken Reese et al.Research Insights: Optimal MFA options for Web3 audiencesThe State of the Auth: Experiences and Perceptions of Multi-factor Authentication“Nah, it’s just annoying!” A Deep Dive into User Perceptions of Two-Factor Authentication By Karola Marky et al.“Don’t punish all of us”: Measuring User Attitudes about Two-Factor Authentication By Jonathan Dutson et al.The original, and arguably the best book on Nudge Theory - Nudge: The Final Edition: Improving Decisions About Money, Health, and the Environment by Richard H. Thaler and Cass R. Sunstein. This is a must-read book to learn about influencing behaviour changeAbout Helena HillHelena Hill is a seasoned UX Strategist and Consultant with a wealth of experience spanning diverse clients, from pre-start-ups to global industry giants. Her expertise encompasses fostering in-house UX and customer experience teams, orchestrating and implementing cutting-edge UX methodologies, and collaborating with clients to craft innovative, user-centric digital experiences.As a thought leader, Helena frequently takes the stage to share her insights on user experience design, customer experience, and service design. She has recently extended her skills into the exciting realm of passenger experience. Furthermore, Helena holds a ChatGPT expert certification, showcasing her high level of expertise in conversational AI and how it can be utilised to exceed user and customer expectations.Links related to Helena HillHelena’s websiteHelena’s LinkedIn

This week our guest is Melina Palmer, a renowned keynote speaker in behavioural economics and the CEO of The Brainy Business, as well as hosting one of the best podcasts on the subject of the practical application of behavioural economics.In this episode, we're going to discuss the art of influencing both up and down, and how to tailor your cybersecurity message to different audiences. Melina teaches us that it's not about the cookie - that is, it's not just about the product or cybersecurity awareness and controls themselves, but it's about how we frame information and communicate change.With her expertise in behavioural economics, Melina shows us how to make change easier, reduce decision fatigue, and increase social capital through understanding and compromise.What you’ll learn in this episode:Effective communication is key to influencing both up and down in an organization. Tailoring your message to the audience and framing it in a relatable way can make you a more thoughtful communicator.Cybersecurity awareness and controls are crucial for preventing breaches, but the way you "sell" the experience matters. By making engagement positive and impactful, you can increase social capital and encourage people to follow the rules.Change can be overwhelming, especially when we're already dealing with a lot of decisions and cognitive load. To make change easier, it's important to focus on what matters in the moment and avoid overwhelming people with too many changes at once.By understanding how our brains work and tailoring our communication and change management strategies accordingly, we can make a positive impact on our organizations and help drive progress.If you're interested in understanding the behavioural science behind cybersecurity and how we can communicate more effectively, then you're in the right place. Links to everything Melina discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review.Follow us on all good podcasting platforms and via our YouTube channel, and don't forget to share on LinkedIn and in your teams.It really helps us spread the word and get high-quality guests, like Melina, on future episodes. We hope you enjoyed this episode - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I the compromising position here?’Show NotesMelina has created a fantastic It’s Not About The Cookie worksheet so you can start using it in your organisation todayAn article on delivering bad news on a Friday. It isn’t the book Lianne mentioned (she can’t remember what book that was!) but this article covers why bad news from leadership on a Friday is a bad move! ByKorn FerryAn article on Decision FatigueABOUT MELINA PALMERMelina Palmer is a globally celebrated keynote speaker showing companies how they can easily get customers to buy and employees to buy in by leveraging the power of behavioural economics.She is the CEO of The Brainy Business, which provides behavioural economics training and consulting to businesses of all sizes from around the world.Her podcast, The Brainy Business: Understanding the Psychology of Why People Buy, has downloads in over 170 countries and is used as a resource for teaching applied behavioural economics to many universities and businesses. Melina teaches applied behavioural economics through the Texas A&M Human Behavior Lab and obtained her master’s in behavioural economics from The Chicago School of Professional Psychology.A proud member of the Global Association of Applied Behavioral Scientists, Melina has contributed research to the Association for Consumer Research, Filene Research Institute, and writes on Behavioral Economics & Business for Inc Magazine.Her first book, What Your Customer Wants and Can’t Tell You (2021), won first place in the Chanticleer International Book Awards in its category, of which her second book, What Your Employees Need and Can’t Tell You (2022), was also a finalist. Her highly anticipated third book, The Truth About Pricing, is scheduled to be published in January 2024.LINKS RELATED TO MELINA PALMERThe Brainy Business (Website)The Brainy Business PodcastLinkedIn

This week our guest is Melina Palmer, a renowned keynote speaker in behavioural economics and the CEO of The Brainy Business, as well as hosting one of the best podcasts on the subject of the practical application of behavioural economics.In this episode, we discuss how silos and tribal mentalities occur in the workplace due to confirmation bias and how we can expand the circle of empathy to create a more cohesive team.We'll also delve into the issue of time discounting, availability bias and optimism bias to understand why people are drawn to the easy option in the moment.We shall explore how the cybersecurity team's curse of knowledge can be a barrier to effective communication, and the need to create easier-to-digest content that enables 'buy-in.' Key takeaways for this episode are:Understanding the behaviour that leads to insecure cybersecurity behaviour is crucial in developing effective cybersecurity strategies.Silos and tribal mentalities in the workplace can be detrimental to team dynamics and productivity. Leaders should work towards creating a 'team company' culture.Confirmation bias and focusing illusion can lead to negative relationships and narrow perspectives. It's important to listen and build positive connections.Cybersecurity messages should be framed in a way that resonates with users and takes into account their knowledge and habits.To effectively communicate cybersecurity information, it's important to get into the mind space of the person you're communicating with and provide easy-to-digest content.If you're interested in understanding the behavioural science behind cybersecurity and how we can communicate more effectively, then you're in the right place. Links to everything Melina discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review.Follow us on all good podcasting platforms and via our YouTube channel, and don't forget to share on LinkedIn and in your teams.It really helps us spread the word and get high-quality guests, like Melina, on future episodes. We hope you enjoyed this episode - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I the compromising position here?’SHOW NOTESThe original, and arguably the best book on Nudge Theory - Nudge: The Final Edition: Improving Decisions About Money, Health, and the Environmentby Richard H. Thaler and Cass R. Sunstein. This is a must read book to learn about influencing behaviour changeThe Power of Us: Harnessing Our Shared Identities for Personal and Collective Successby Jay Van Bavel and Dominic J. PackerA short video on the philosophy of Ayn RandMelina’s episode on Confirmation BiasMelina’s episode on Focusing IllusionWe couldn’t find the exact study Melina mentions in regards to teachers bias and the impact on grades but we did find another similar study that shares almost the same results - (Biased) Grading of Students’ PerformanceMelina’s episode on Availability BiasMelina’s episode on Time DiscountingMelina’s episode on Optimism BiasABOUT MELINA PALMERMelina Palmer is a globally celebrated keynote speaker showing companies how they can easily get customers to buy and employees to buy in by leveraging the power of behavioural economics.She is the CEO of The Brainy Business, which provides behavioural economics training and consulting to businesses of all sizes from around the world.Her podcast, The Brainy Business: Understanding the Psychology of Why People Buy, has downloads in over 170 countries and is used as a resource for teaching applied behavioural economics to many universities and businesses. Melina teaches applied behavioural economics through the Texas A&M Human Behavior Lab and obtained her master’s in behavioural economics from The Chicago School of Professional Psychology.A proud member of the Global Association of Applied Behavioral Scientists, Melina has contributed research to the Association for Consumer Research, Filene Research Institute, and writes on Behavioral Economics & Business for Inc Magazine.Her first book, What Your Customer Wants and Can’t Tell You (2021), won first place in the Chanticleer International Book Awards in its category, of which her second book, What Your Employees Need and Can’t Tell You (2022), was also a finalist. Her highly anticipated third book, The Truth About Pricing, is scheduled to be published in January 2024.LINKS RELATED TO MELINA PALMERThe Brainy Business (Website)The Brainy Business PodcastLinkedIn

A word of warning listeners, we do discuss the darker side of crime, including human trafficking which some of our listeners may find upsetting. If this isn’t for you, feel free to skip this one and we’ll see you next week.——————————————————————This week our guest is Ray Blake. Ray is an advisor on financial crime matters and co-creator of the Dark Money Files podcast.In this episode, we explore the motivations driving individuals to commit such crimes, probing whether it's sheer greed, the allure of victimless crimes, or a complex mix of factors.We discuss how the lack of direct interaction with victims and the personal rationalizations criminals make facilitate the perpetuation of these crimes.We also talk about the concept of corporate values and how they may not always align with individual morals, leading to a disconnect that can be exploited.Furthermore, we look at the responsibility and moral hazard inherent in the fight against fraud, highlighting how cybersecurity often wrongfully blames the victim rather than focusing on the perpetrator.Key Takeaways for this Episode:Financial crime and cybercrime are closely related, and the lines between them are blurring.The lack of interaction with the victim makes it easier to commit financial crime, and rationalisation is the story of organised crime.Companies need to take responsibility for fraud and liability, and regulation and refunding customers can incentivise them to make the system safer.Personal stories are key to creating empathy and driving change, and bad security communications can cause rebellion.Links to everything Ray discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review. Follow us on all good podcasting platforms and via our Youtube channel, and don't forget to share on LinkedIin and in your teams.It really helps us spread the word and get high-quality guests, like Ray, on future episodes.  We hope you enjoyed this episode - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I the compromising position here?’ Show NotesJenny ‘The People Hacker’ RadcliffePeople Hacker: Confessions of a Burglar For Hire by Jenny RadcliffePSR announces plans to stop APP scamsCybercrime To Cost The World $10.5 Trillion Annually By 2025Goldfinger Quote Jeff was referring to was:"Man has climbed Mount Everest. Gone to the bottom of the ocean. He has fired rockets at the Moon. Split the atom. Achieved miracles in every field of human endeavour...except crime!" - GoldfingerStatistics on human traffickingAbout Ray BlakeRay is a commentator and adviser on financial crime matters and has worked extensively across regulated financial services and related fields for many years, working frequently with Boards, MLROs and Compliance teams to help them meet their regulatory accountabilities. He’s also co-creator with Graham Barrow of The Dark Money Files Podcast which looks at financial crime from a whole range of angles.Links related to Ray BlakeThe Dark Money FilesRay’s LinkedIn

This week we have a very special guest, Reema Vadoliya. Reema is the passionate business founder of data consultancy, People of Data, a gifted storyteller, and a professional problem-solver. In this episode, Reema shares her insights on how to collaborate more effectively between cybersecurity and data professionals. She emphasizes the importance of empathetic communication, how sometimes quantifying risks is about gut feeling, not just metrics… We look at how we can use data-driven storytelling to engage and educate people about cybersecurity, including how to make our phishing simulation stats not only more interesting to non-cybersecurity people but also how to make it actually drive meaningful behavioural changes.Top 5 Takeaways for Building a Strong Data Culture and Cybersecurity:1. Collaboration is key: The best way to ensure data security is by fostering good relationships between cybersecurity and data teams. Encourage open communication and explain the importance of keeping data safe.2. Empathy is crucial: To solve problems effectively, it's important to understand the actual problem. Avoid closed questions and focus on the "why" behind the issue.3. Checklists can help: Consistent, repeatable, and reusable rules of engagement can prevent insecure practices and reduce the need for constant consultation with the security team.4. Quantifying risks is complex: Sometimes, you need to rely on gut feeling to balance a complex risk landscape. Business analysts can help identify potential risks that may have been overlooked.5. Start small: Building a strong data culture takes time. Start by removing barriers that make data feel unobtainable and use storytelling to help people understand complex concepts. Make better use of phishing data to tell better stories and improve outcomes.Links to everything we discuss in this episode can be found in the show notes and if you liked the show, please do leave us a review.Follow us on all good podcasting platforms and via our youtube channel, and don't forget to share on LinkedIin and in your teams. It really helps us spread the word and get high-quality guests, like Reema, on future episodes. We hope you enjoyed episode 7, If Data is the new oil, how do we prevent data spills?  - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I the compromising position here?’Show NotesThe phrase ‘Data is the new oil’ was coined by Clive Humby in 2006. In this, he meant that data, like oil, needs refinement and processing to turn it into something useful. We couldn’t find the original conference in which Humby said this, but I did find an interesting article looking at this assertion years later called ‘Data is the new oil of the digital economy’ by WIREDwhich is worth a read.As of November 2023, GDPR fines can be up to 20 million euros, or up to 4% of a company’s global turnover of the preceding fiscal year (whichever is highest for the company found in breach of this regulation).A ‘DBA’ is a Database Administrator’. A DBA is a person who manages, maintains, and secures data in one or more data systems so that a user can perform analysis for business operations. DBAs take care of data storage, organization, presentation, utilization, and analysis from a technical perspective.The meme Jeff was talking about is the ‘Prince or Popstar meme.’ A nice write up of it can be found here.One of the best books at looking at the successes of checklists is Matthew Syed’s thought-provoking book, Black Box Thinking: The Surprising Truth About Success - highly recommended by team CP!Data in Practice: Systematizing data quality at UberUber’s Data BlogAbout Reema VadoliyaReema is a passionate business founder, gifted storyteller and tireless advocate for inclusion in data. By challenging audiences to reshape their perception of data as a dreary necessity, she draws out the real human stories which organically empower intentional inclusion in data and beyond. After seven years and multiple roles in data, Reema decided to launch her new, trailblazing company, People of Data. Through this organisation she seeks to create a world in which data can be used as a springboard for understanding the real people that data represents.Reema is confident speaking about data strategy, analytical exploration, data collection and governance. Her talks offer a passionate manifesto for a world in which Equality, Diversity, Inclusion, and Belonging (EDIB) are the beating heart of all data handling and usage. An experienced speaker not afraid of digging into the gristle of the difficult topics, Reema’s talks push beyond a 1D (one demographic) view of data and offer a refreshing, multi-dimensional consideration of how humanised data can pioneer a brighter future.Links related to Reema VadoliyaReema’s LinkedInReema’s Consultancy, People of Data

Welcome to part two of our enlightening discussion with Matt Ballentine, Engagement Manager at Equal Experts.In this episode, Lianne Potter and Jeff Watkins continue this conversation and dive deeper into the nuances of modern-day communication and work dynamics. Do we need to set new etiquette for engaging in conversations? How do we establish norms when our work environment is evolving?Matt also shares insights on the importance of security in our workflow, the power of networking and the need for effective communication and some unconventional wisdom including our favourite thought experiment ever… what would Dolly Parton do?Establishing New Norms for Work: Top Tips1. Build Rapport: To establish new norms for work, you need to know who you need to influence and build rapport with them. Think about the language you use, ask for conversation, and set up a coffee club to create a comfortable environment.2. Embrace Discomfort: Getting comfortable with discomfort is essential to establish new norms for work. Use metaphors to help address problems and think about what Dolly Parton would do to enable better ideas.3. Be Inclusive: When off-shoring and outsourcing teams, think of the team as a whole. Be conscious of time zones and make people who are not in the room active participants.4. Prioritise Communication: Establishing new norms for work requires prioritising communication. If it doesn't get prioritised, it doesn't happen. Avoid firefighting and focus on drills, learning, talking, and listening to create a comfortable and productive work environment.Links to everything Matt discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review and share on LinkedIin or in your teams, it really helps us spread the word and get high-quality guests, like Matt, on future episodes. We hope you enjoyed this episode - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I a compromising position here?’ Show NotesGoodharts lawThe Victorian Internet: The Remarkable Story of the Telegraph and the Nineteenth Century’s On-Line Pioneers by Tom StandageCopy, Copy, Copy: How to Do Smarter Marketing by Using Other People’s Ideas by Mark EarlsSmells Like Team Spirit by Nirvana Britain Admits Defeat in Online Safety Bill Encryption WiredThe Laws of Mathematics Don’t Apply Here Says Australian PM New Scientist100 Coffees ProjectAbout Matt BallantineMatt is a sociologist who has accidently found himself working in the world of technology for thirty years. Today he's an engagement manager for software development business Equal Experts, and previously he's held leadership roles at the BBC, Microsoft, Reuters, global marketing agency Imagination and London housing provider RHP.In a parallel work universe he produces and presents a long-running technology management podcast WB-40, he's created a playing card deck to help inspire better innovation called PlayCards and most recently run a project to build a relationships through the medium of coffee (or tea). Matt lives in South West London with his partner, two children and a small family of saxophones.Links related to Matt BallantineHis PlayCards: https://stamplondon.co.uk/His Website: https://mmitii.mattballantine.com/His Podcast: https://wb40podcast.com/

This Episode we are joined by Matt Ballentine, an Engagement Manager at Equal Experts. We do a deep dive into workplace culture and user-needs-centric cybersecurity.Matt believes that the essence of modern leadership isn't just about supervision, but about becoming a nexus between people and ideas.From the transformative shift of T-shaped managers to the pivotal role of psychological safety, we'll journey through the strategies leaders need to adopt to thrive in today's interconnected age.Get ready to challenge your understanding of work, play, and the art of connection in this two-part episode.Links to everything Matt discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review and share on LinkedIin or in your teams, it really helps us spread the word and get high-quality guests, like Matt, on future episodes. We hope you enjoyed this episode - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I a compromising position here?’ Show NotesCollaboration by Morten Hanson Praise for Cyber Saint, Ben Aung @ Sage!Did Using Militaristic Language Make the Pandemic Feel Even Worse? The Protestant Work Ethic 100 Coffees ProjectTalk: The Science of Conversation by Elizabeth StokoeCampbell’s LawAbout Matt BallantineMatt is a sociologist who has accidently found himself working in the world of technology for thirty years. Today he's an engagement manager for software development business Equal Experts, and previously he's held leadership roles at the BBC, Microsoft, Reuters, global marketing agency Imagination and London housing provider RHP.In a parallel work universe he produces and presents a long-running technology management podcast WB-40, he's created a playing card deck to help inspire better innovation called PlayCards and most recently run a project to build a relationships through the medium of coffee (or tea). Matt lives in South West London with his partner, two children and a small family of saxophones.Links related to Matt BallantineHis PlayCards: https://stamplondon.co.uk/His Website: https://mmitii.mattballantine.com/His Podcast: https://wb40podcast.com/His PlayCards: https://stamplondon.co.uk/His Website: https://mmitii.mattballantine.com/

In this episode, our guest Josh Nesbitt, CTO of Glean a Leeds EdTech startup, shares his insights on securing the data of vulnerable people, the importance of accessibility and compliance in production-ready products, and the challenges of achieving usability, functionality, and security in concert.  Join us as we debunk common misconceptions around agile and explore how security teams can be more creative in their approach. We’ll talk about how to use tooling and engagement to get engineers and security teams on the same page. Links to everything Josh discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review and share on LinkedIin or in your teams, it really helps us spread the word and get high-quality guests, like Josh, on future episodes. We hope you enjoyed this episode - See you next time, keep secure, and don’t forget to ask yourself, ‘Am I a compromising position here?’ SHOW NOTESGreat blogs on how Shopify do engineering: https://shopify.engineering/The ‘curse of knowledge’ Jeff mentioned came from our discussions with Christian Hunt - Check out his episodes hereGithub ActionsNice guide on how to get started with Linting (a tool the analyses source code to flag programming errors and bugs)Rubocop - A Ruby static code analyser About JoshJosh is a software engineer and technical leader based in the UK. He’s been working on the web for the last 17 years, and during that time, he’s worked with a wide range of clients, from indie start-ups to some of the largest organisations in the world. His work spans from hands-on projects building large platforms to leading some of the best-performing teams in our industry.Alongside his work as a consultant, he also runs an internationally recognised conference called All Day Hey!, which brings people from all over the world to the heart of Leeds to learn, inspire and share stories.Links Related to Josh Nesbitt:Josh on Linkedin: linkedin.com/in/josh-nesbittJosh at Hey! Including his amazing conference ALL DAY HEY!: https://heypresents.com/Josh’s podcast: https://heypresents.com/podcast

In this episode, we continue our conversation with Christian Hunt, the founder of Human Risk, a firm that helps organisations with ethics and compliance. Christian shares his insights on why blanket bans are ineffective and how small acts of rebellion can lead to bigger problems. He also explains why treating employees with empathy and respect is more productive than treating them like potential criminals. Finally, he introduces his H.U.M.A.N.S Framework, and guides us in this fantastic example of how to prevent people from clicking on malicious emails. This episode is full of valuable insights on how to be more 'HUMAN' and avoid cyber risks.Links to everything Christian discussed in this episode can be found in the show notes below and if you liked the show, please do leave us a review and share far and wide! It really helps us spread the word and get high-quality guests, like Christian, on future episodes. We hope you enjoyed this episode - Keep safe, Keep secure, and don’t forget to ask yourself, ‘Am I the compromising position here?’ Show NotesChristian is the founder of Human Risk, a Behavioural Science (BeSci) led Consulting and Training Firm specialising in Ethics & Compliance and the author of a book, ‘Humanizing Rules’. He was formerly Managing Director, Head of Behavioural Science at UBS. Christian joined the Firm in Compliance & Operational Risk Control, leading the function globally for UBS Asset Management. Before joining UBS, he was COO of the UK Prudential Regulation Authority, a subsidiary of the Bank of England responsible for regulating financial services.Links related to Christian Hunt:His Book: https://www.human-risk.com/humanizing-rules-bookHis Website: https://www.human-risk.com/His Podcast: https://www.humanriskpodcast.com/

This episode we've got a super interesting interview with Christian Hunt, the founder of Human Risk. He's a Behavioural Science expert and author of the book 'Humanizing Rules', which explores how we can use Behavioural Science to improve compliance and ethics. In this interview, Christian shares his insights on how important it is to consider the humans behind compliance and cybersecurity.He explains that it's not just about following documentation, but also about the people who are responsible for ensuring compliance within an organization. Christian talks about how we can use Behavioural Science techniques to encourage buy-in for ethics and compliance, despite their negative reputation. One of the key takeaways from the interview is the importance of designing things for how people actually behave, as opposed to how we'd like them to behave. Christian emphasizes that we need to enable people to make real decisions in the real world and give them more autonomy to help keep our organisations safe. He also touches on the ethics of phishing simulations,  measuring the success of training, and how people really feel about rules they don’t respect! There was so much good stuff in this interview that we had to make this a two-parter, so follow the show wherever you get your podcasts so you don’t miss the second episode where Christian uses his HUMANS Framework to help us get the most out of stopping people click on potential phishing links! Links to everything Christian discussed in this episode can be found in the show notes and if you liked the show, please do leave us a review and share far and wide! It really helps us spread the word and get high-quality guests, like Christian, on future episodes. We hope you enjoyed this episode - Keep safe, Keep secure, and don’t forget to ask yourself, ‘Am I the compromising position here?’ Show NotesChristian is the founder of Human Risk, a Behavioural Science (BeSci) led Consulting and Training Firm specialising in Ethics & Compliance and the author of a book, ‘Humanizing Rules’. He was formerly Managing Director, Head of Behavioural Science at UBS. Christian joined the Firm in Compliance & Operational Risk Control, leading the function globally for UBS Asset Management. Before joining UBS, he was COO of the UK Prudential Regulation Authority, a subsidiary of the Bank of England responsible for regulating financial services.Links related to Christian Hunt:His Book: https://www.human-risk.com/humanizing-rules-bookHis Website: https://www.human-risk.com/His Podcast: https://www.humanriskpodcast.com/

Episode 0 - Trailer