Phishing attacks: defending your organisation

This paper proposes a multi-layered approach to defending your organisation against phishing attacks, condensed into four layers. At each layer, the authors recommend tactical interventions to help organisations achieve this multi-layered security.   Read full paper     Authors: NCSC, CPNI

Growing positive security culture

This blog post explores how organisations can create, maintain and improve their security culture and addresses the questions one may have in regards to security culture. The author highlights three phenomena that actively prevent affected organisations from achieving a culture of security, alongside offering alternative approaches to to each.   Read full paper     Authors: Emma W...

Cyber Security Culture in organisations

Drawn from multiple disciplines including organisational sciences, psychology, law and cyber security, this report aims to assist organisations looking to begin or enhance their own cyber security culture programme.     Read full paper     Authors: ENISA

NUDGE – Improving Decisions About Health, Wealth, and Happiness

Thorough book introducing “nudge” theory; the idea of subtly nudging people to make certain decisions or behaviours. Examples include placing certain foods in different orders to encourage healthy eating and changing default options to the desired choice. These small changes can drastically impact an individual’s behaviours.     Read full paper     Authors: Richard H. Thaler, Cass R....