Employee Hijacking: Building a hacktober awareness program

Presented at BSidesSF 2016, Feb. 29, 2016, 5:30 p.m. (25 minutes)

Security awareness can be one of the driest and most boring topics for employee's. You hate giving it, and they hate sitting through it. Lets change that. Learn how to create an annual Hacktober program that teaches employees important lessons, as you hack them all month long, in the name of security awareness. Employees win prizes, and your human attack surface gets better prepared.

Presenters:

• Dylan Harrington - Security Engineer - Intermedia
• Ninad Bhamburdekar - Security Engineer - Intermedia
• Ryan Barrett
  Ryan has over a 15yrs of experience with strategic information security management and advisory services to align security and privacy to the business. His areas of expertise include compliance, systems and network security, vulnerability assessment, security operations, monitoring, intrusion detection and incident response. Ryan was an independent consultant who's clients included Cisco, VMware, Visa and Google. Ryan has held management and leadership positions at WebEx, Qualys, LiveOps and the security consulting firm IOActive. He currently holds a CISSP certification, with past certifications including GCIA and CCNA.As the VP of Security and Privacy at Intermedia, Ryan is responsible for securing and maintaining the privacy of Intermedia's enterprise cloud service offerings.

Links:

• https://bsidessf2016.sched.com/event/6610/employee-hijacking-building-a-hacktober-awareness-program

Similar Presentations:

• Kernelcon 2023 / The Big Bang for Security Awareness
• DerbyCon 2.0 Reunion (2012) / Is it time for another firewall or a security awareness program?
• DerbyCon 3.0 All in the Family (2013) / Building An Information Security Awareness Program from Scratch