Embedding a Human-Centric Approach Into a Global Cyber Security Program

Presented at Black Hat Europe 2021, Nov. 10, 2021, 4:20 p.m. (40 minutes)

Humans are the weakest link in cyber security – or so the famous saying goes! This talk will challenge this age old expression to focus on the human elements of the protection pillars; people, process, and technology.

Organisations have an overwhelming focus on technology in cyber security defences including offensive red-team operations to highlight weaknesses. Yet the numbers of successful attacks are still increasing; both in frequency and impact.

It is time that as an industry we start to think differently about our approach; considering the human-centric notions as part of our technological advances, throughout our entire ecosystem and security lifecycle. The aviation sector is a pioneer of this technique; so how is this thinking being adopted in the cyber security program of Airbus?


Presenters:

  • Kevin Jones - Group Chief Digital / Information Security Officer (CISO), Airbus
    Dr. Kevin Jones is the Group Chief Digital / Information Security Officer (CISO) at Airbus, responsible for the digital security programme including risk management, design architecture, red team, detection and response, plus cyber security research & innovation across the IT, ICS, people and product security domains. He provides strategic, organisational, and technical programmes within the digital security function.<br><br>Kevin is an industry-recognised expert having previously worked in the technical fields of both offensive and defensive cyber security, and more recently in strategic and senior leadership roles. He is active in the cyber security research community, has published over 50 articles, holds multiple patents within the domain, and regularly engages with the security community and businesses on implementing best in class digital security programmes.<br><br>Kevin works closely with Government agencies and is currently the Industry Chair of the UK National Cyber Security Centre (NCSC) Industrial Control Systems Community of Interest and a member of the associated expert group. <br><br>He is an advocate and champion for cyber security in academia, the development of cyber skills and for multi-disciplinary research. He is a founding member of CyberWales representing the cyber security ecosystem across Wales and on the International stage.<br>

Links:

Similar Presentations: