Security Through Design - Making Security Better by Designing for People

Presented at Black Hat USA 2016, Aug. 3, 2016, 5:30 p.m. (30 minutes)

In this session we will explore why certain devices, pieces of software or companies lead us to utter frustration while others consistently delight us and put a smile on our face. With these insights in mind, we will explore how we typically create our security processes, teams and solutions. All too often we create something without properly understanding what our colleagues or customers are trying to achieve only to bombard them with awareness training and policies because they "just don't get it" and because "humans are the weakest link." We will look at user-centered design methods and concepts from other disciplines like economy, psychology or marketing that can help us to build security in a truly usable way not just our tools but also the way we setup our teams, the way we communicate and the way we align incentives. Every interaction with security is an opportunity to improve convenience and bring a smile to somebody's face. By understanding the impact of design, we can do a lot to improve corporate productivity and security itself.


Presenters:

  • Jelle Niemantsverdriet - Deloitte
    Jelle Niemantsverdriet is fascinated by the intersection of cybersecurity and other disciplines like human-centered design, safety research, marketing and data science. Having investigated some of the largest data breaches in the world, he has a pretty unique view of what happens when things go wrong in cybersecurity - both from a technical and a boardroom perspective. Jelle aims to use that insight to build better and more secure teams, tools and businesses and strongly believes that can only be done by positioning the security organisation as a forward-looking, enabling, data-driven, fast-moving team instead of the traditional 'department of NO.' He is an experienced public speaker - recognised for using lively and non-standard presentation content and style - and has regularly commented on cybersecurity issues for both written media and radio/television. Jelle is CISSP and CISM certified and holds an MSc in Artificial Intelligence and an MBA from the University of Chicago Booth School of Business. Originally from the Netherlands, he has lived for 7 years in the United Kingdom and has worked extensively across the Americas, Europe, the Middle East and in Asia.

Links:

Similar Presentations: