People Centered Cybersecurity

Transcript

1. People-Centered Cybersecurity The Key to Small Business Cybersecurity Heather Noggle

   April 18, 2024

2. Heather Noggle •Public sector HR •Long career as full stack

   developer / BA / PM •Business owner •Board leader •Cybersecurity practitioner / advocate

3. Foundation •Leadership Values Cybersecurity •Change Management Process •Agreement There’s Work

   to be Done

4. Cybersecurity Defined People, processes, and technology working together to protect

   the confidentiality, integrity, and availability of data. Keeping private data private and enabling proper access to other data.

5. Train Your People • What technology and information security mean

   to business. (Continued Operation) • To value cybersecurity as necessary in our modern world. (Data Privacy) • How to do the work. (Behavior)

6. Cyber Hygiene (Those Behaviors) • Password Best Practices • Password

   Manager • Multifactor Authentication • Update (Patch) Software • Cybersecurity Mindset (Awareness) • Antivirus/Antimalware • Know Your Devices • Back Up Your Data • Understand Social Engineering (Fraud) • Own Your Clicks

7. Change How We Trust • Trust the people we know

   and interact with in person • Anything else – the digital – can be faked • Zero trust – for people and machines

8. Standards and Frameworks • NIST Cybersecurity Framework – CSF https://www.nist.gov/cyberframework

   • Center for Information Security - CIS v8 https://www.cisecurity.org/controls/cis-controls-list

9. Parting Advice • Tech Isn’t Going Away – Secure It

   • Train Your Organization! • Safer – at Home and at Work • Build Security Into Your Culture

10. Heather Noggle LinkedIn - https://www.linkedin.com/in/heathernoggle/ Codistac - https://codistac.com/ [email protected]