Perry Carpenter Libri

Mitigate human risk and bake security into your organization’s culture from top to bottom with insights from leading experts in security awareness, behavior, and culture. The topic of security culture is mysterious and confusing to most leaders. But it doesn’t have to be. In The Security Culture Playbook , Perry Carpenter and Kai Roer, two veteran cybersecurity strategists deliver experience-driven, actionable insights into how to transform your organization’s security culture and reduce human risk at every level. This book exposes the gaps between how organizations have traditionally approached human risk and it provides security and business executives with the necessary information and tools needed to understand, measure, and improve facets of security culture across the organization. The book Also including several revealing interviews from security culture thought leaders in a variety of industries, The Security Culture Playbook is an essential resource for cybersecurity professionals, risk and compliance managers, executives, board members, and other business leaders seeking to proactively manage and reduce risk.

Expert guidance on the art and science of driving secure behaviors is essential for security leaders aiming to implement effective security awareness programs that foster secure behaviors and cultural change. With humans as the last line of defense when other processes and technologies fail, preparing them is crucial. Many security leaders are frustrated with ineffective training methods and seek a better approach that engages users and reinforces security values within the organization. The author combines insights from communication, psychology, behavioral economics, and organizational culture to create a comprehensive guide that goes beyond traditional security education. Key topics include marketing, communication, behavior science, and culture management, along with strategies to overcome the knowledge-intention-behavior gap. The book emphasizes optimizing programs to align with human nature and utilizing innovative methods like simulations and games to enhance security awareness. Moreover, it provides a framework for crafting effective campaigns with ambassadors, understanding the keys to sustained success, and measuring progress for continuous improvement. If your organization is trapped in outdated security awareness practices that merely fulfill compliance requirements while leaving vulnerabilities exposed, this resource is essential for transforming your approach to security awareness.