The Psychology of Information Security - Resolving conflicts between security compliance and human behaviour, second edition
SKU: 6293
Learn how to align security with productivity and organisational goals, manage change and build a resilient security culture.
Paperback formats are available for all IT Governance Publishing titles on request.
Please contact us for further information:
Price: £12.95
Overview
Security fails when controls fight the people who must use them. This concise, hard-hitting guide shows how to fix that — by marrying behavioural science with pragmatic security design.
Drawing on industry experience and cross-disciplinary research, the book gives clear, actionable recommendations for designing controls that fit real work, driving lasting behavioural change and treating people as defenders — not the weakest link.
If you’re a security leader or practitioner who wants to build systems that work with human nature and not against it, this is the playbook: socio-technical, people-centred, and relentlessly practical.
“Leron approaches the subject from a psychological angle and will be appealing to both those of a non-technical and a technical background”
Dr David King, Visiting Fellow of Kellogg College, University of Oxford
“This book cuts to the heart of many of the challenges in risk management, providing tips, frameworks and guidance that can be implemented straight away. This is a book full of very practical takeaways.”
Thom Langford, CTO (EMEA), Rapid7
“Based on real world examples this book provides valuable insights into the relationship of information security, compliance, business economics and decision theory. Drawing on interdisciplinary studies, commentary from the field and his own research, Leron gives the reader the necessary background and practical tools to drive improvements in their own information security program.”
Daniel Schatz, CISO, QIAGEN
About the authors
Lucy Grimwade
Leron is a forward-thinking technology leader specialising in cyber security strategy, management and delivery. He has led large-scale, global, high-value security transformation projects to improve cost performance and support business strategy.
Leron has extensive knowledge and practical experience in solving information security, privacy and architectural issues across private and public sectors. His business acumen, technology insight and leadership allow him to enable organisations to grow and innovate while protecting them against cyber threats.
He has an MBA from the University of New South Wales and an MSc in Information Security from University College London, where he focused on the human aspects of information security. His research was related to modelling conflicts between security compliance and human behaviour and combating scams using AI.
Leron is an ethical leadership award recipient and recognised as one of the top cyber security leaders driving innovation and demonstrating value.