Cracking Security Awareness - The Little-Known Secrets

In this insightful episode, Karthika, VP of People at OutThink, hosts a conversation exploring the secrets of tracking and improving security culture within organizations. Special guests Sagita, Security Awareness Lead at Danske Bank, and Rory, Head of Content at OutThink, share valuable insights drawn from extensive experience and research.

The discussion highlights three crucial strategies for effective security awareness:

  1. Frequent and Short Training: Regular, concise training sessions prove more impactful compared to lengthy, infrequent ones.
  1. Targeted and Relevant Content: Tailoring training to employee roles and psychological profiles significantly boosts engagement and effectiveness.
  1. Reinforcement from Across the Business: Effective security culture requires consistent messaging and active participation from management and peers, beyond just the security team.

Sagita emphasizes replacing fear-based approaches with positive reinforcement, stressing the importance of integrating security practices into the broader organizational culture and goals. Rory underscores the value of human risk intelligence, advocating for adaptive, real-time responses to human behaviors.

The episode concludes with practical tips on embedding security culture through continuous dialogue, manager engagement, and creative internal communication strategies.

Train your workforce with the best in cybersecurity

Related Articles
How to Build and Sustain a Successful Security Champions Program
Andy Wood
11/07/2025

How to Build and Sustain a Successful Security Champions Program

Read More about AI-Native Cybersecurity Human Risk Management
It’s Time to Make Peace With Imperfection in Cybersecurity Human Risk Management
Thea Mannix
27/06/2025

It’s Time to Make Peace With Imperfection in Cybersecurity Human Risk Management

Read More about AI-Native Cybersecurity Human Risk Management
Why I Refused to Say “People Are the Weakest Link in Cyber”
Jane Frankland
26/06/2025

Why I Refused to Say “People Are the Weakest Link in Cyber”

Read More about AI-Native Cybersecurity Human Risk Management
Can Your People Outthink a Deepfake?
Olivia Debroy
19/06/2025

Can Your People Outthink a Deepfake?

Read More about AI-Native Cybersecurity Human Risk Management
Trusting HTTPS Could Be Your Biggest Mistake - Here’s Why
Olivia Debroy
16/06/2025

Trusting HTTPS Could Be Your Biggest Mistake - Here’s Why

Read More about AI-Native Cybersecurity Human Risk Management
The Human Risk Behind Scareware Attacks
Olivia Debroy
13/06/2025

The Human Risk Behind Scareware Attacks

Read More about AI-Native Cybersecurity Human Risk Management
Why Whaling Attacks Are the Caviar of Cybercrime
Olivia Debroy
10/06/2025

Why Whaling Attacks Are the Caviar of Cybercrime

Read More about AI-Native Cybersecurity Human Risk Management
Biometrics Are Here: Are We Ready for the Human Risks?
Olivia Debroy
06/06/2025

Biometrics Are Here: Are We Ready for the Human Risks?

Read More about AI-Native Cybersecurity Human Risk Management
I’m a Human Risk Manager (I Think?)
John Scott
03/06/2025

I’m a Human Risk Manager (I Think?)

Read More about AI-Native Cybersecurity Human Risk Management
How Microsoft’s ‘Passwordless by Default’ Might Save Security
Olivia Debroy
28/05/2025

How Microsoft’s ‘Passwordless by Default’ Might Save Security

Read More about AI-Native Cybersecurity Human Risk Management