Presented at
Diana Initiative 2020 Virtual,
Aug. 21, 2020, 9 a.m.
(60 minutes).
It’s unusual for companies to take a page from children’s books to train and educate their employees, but in this case, the Robinhood Security Engineering Team did just that. The information security industry frequently looks to experts on organizational behavior to help employees learn secure habits and create a strong security culture, but we may forget one of the best examples of shaping habits, lessons, and behaviors: children’s stories. Children’s stories help their young readers define, develop, and practice habits that contribute to greater societal norms. From introducing characters, explaining their motivations, and capturing their interactions with others and the surrounding environment, children’s books make it easy for readers of all ages to understand, learn, and aspire to certain behavioral frameworks. How can we, as security professionals, widen our perspectives on the human factor and help equip our employees with strong security habits?
Meet Crypto Cat. From inception to execution, we'll talk about how we bootstrapped, built, and launched Secure Sherwood Forest: a custom-built, interactive security game to educate employees on key security and privacy behaviors in a novel and engaging fashion. Through customized characters, a fantasy-based storyline, and a simple, internally-hosted, web-based game as our delivery mechanism, we’ll discuss the key security behaviors identified, how the game leveraged technology for hands-on decision-making and positive reinforcement of key habits, and the overall impact of the game on nurturing a collaborative and proactive culture of security at Robinhood.
**
We're looking forward to seeing you there! :)**
Presenters:
-
Jessica Chang
- Speaker
Jess Chang is a Sr. Security Technical Program Manager at Robinhood Markets, Inc. As a speaker, she has presented talks and spoken on panels for global security industry conferences, peer companies, federally-funded research and development centers, and industry groups. Prior to joining Robinhood, she built and led the security culture program and key company initiatives in trust and security at Dropbox as Tech Lead for Security Culture and as Technical Program Manager for Trust & Security. These programs included Trustober, Dropbox’s celebration of safety, security, and trust held annually in October to strengthen the security mindset of employees in conjunction with National Cyber Security Awareness Month, as well as designing and instituting over 130 talks and workshops on security, safety, and trust. She holds degrees from Yale, The Juilliard School, and the Curtis Institute of Music, maintains a dual career as a professional musician, and is passionate about building communities through her work.
-
Colin Seale
- Speaker
Colin Seale is a Software Engineer at Robinhood Markets, Inc. At Robinhood, Colin works on access management, security products, and crypto custody. Prior to joining Robinhood, he has had roles as a Security Researcher at OpenDNS, Software Engineer at Cisco, and Blockchain Security Engineer at Polyswarm. Colin is a self-taught engineer who gained software development experience from successfully competing and pitching projects in hackathons. He holds degrees in Statistics and Economics from Florida International University.
Links:
Similar Presentations: