SLIDE 1
Building a Culture of Security Agenda What is a Culture of - - PowerPoint PPT Presentation
Building a Culture of Security Agenda What is a Culture of - - PowerPoint PPT Presentation
Building a Culture of Security Agenda What is a Culture of Security? Regulatory Requirements Cyber Hygiene How to Develop a Culture of Security What is a Culture of Security A set of values, shared by everyone in an
SLIDE 2
SLIDE 3
What is a Culture of Security
➢A set of values, shared by everyone in an organization, that determine how people are expected to think about and approach security1 ➢Benefits
➢Reduced cyber incidents ➢Risk reduction ➢Increased compliance ➢Engaged workforce
1 Developing a Security Culture, Center for the Protection of National Infrastructure
SLIDE 4
Regulatory Requirements
SLIDE 5
Cyber Hygiene
Policies Least Privilege Network Segmentation Encryption Authentication Patching Security Awareness Endpoint Protection
SLIDE 6
How to Develop a Culture of Security
➢ Acknowledge a need ➢ Identify a person to lead the change ➢ Establish a vision for the end state ➢ Leadership Buy-in ➢ Leaders understand risks ➢ Communicate, Communicate, Communicate ➢ Training ➢ Employees understand the need ➢ Daily practices consider security – second to Safety
SLIDE 7
How to Develop a Culture of Security Crawl
➢Change doesn’t happen fast ➢Develop a vision to race to
SLIDE 8
How to Develop a Culture of Security Walk
➢Start at the top ➢Build a marketing plan
SLIDE 9
How to Develop a Culture of Security Run
➢Education ➢Security “Just Happens”
SLIDE 10
How to Develop a Culture of Security Conclusion
SLIDE 11