SlideShare a Scribd company logo

Navigating To Your Security Culture Goal

Download as PPTX, PDF
Kai Roer
Kai Roer

In this presentation, we introduce the Security Culture Framework (the free and open framework to build and maintain security culture), and explain how the Community, 3rd party partners and The Roer Group works together to create a full ecosystem of security culture. You can join the movement at https://scf.roer.com

Business
1 of 24
https://scf.roer.com The Security Culture Framework Navigating To Your Goal
Security Culture “ ” Kai Roer, Founding Partner https://scf.roer.com The ideas, customs, and social behavior of a particular people or society, that allows them to be free from danger or threats.
https://scf.roer.com The Security Culture Framework A Quick Introduction
● Assess where you currently are ○ Create baselines ○ Understand what to measure ○ Understand how to measure ● Visualise where you would actually like to be ○ Define clear (SMART) goals ○ Describe the goal using metrics https://scf.roer.com The Security Culture Framework Know Your Goals
The Security Culture Framework ● Look at who you will need to involve along the journey ○ HR, Marketing and PR ○ CxO, Employees, Stakeholders ● Analyze the audience ○ Who are my target audience? ○ What do they care about? ○ How do they communicate? ○ How do I best adapt the security https://scf.roer.com message to their needs? Know Your Audience
The Security Culture Framework ● Choose and use topics and https://scf.roer.com activities that leads towards your defined goals ● Use different activities to build competence ● Drive behavioral change through topics and activities that are relevant to your program Know Your Topics
● Plan for success! ● Organize the work in time-limited Campaigns to help you stay in control ● Run campaigns in parallel in larger organizations to target different audiences, topics and goals ● Run Campaigns in series to build a complete security culture program https://scf.roer.com The Security Culture Framework Know Your Plan
https://scf.roer.com The Security Culture Framework Plotting a Course
The Community https://scf.roer.com The Security Culture Framework: Templates and methodology Free Paid, Optional: 3rd party Paid, The Roer Group Manage Internally ● The framework is free and open ● Download templates ● How-To guides for each template ● Published with a Creative Commons license. ● https://scf.roer.com
The Community https://scf.roer.com The Security Culture Framework: Templates and methodology Free Paid, Optional: 3rd party Paid, The Roer Group Manage Internally ● Manage your own Security Culture Program ● Use internal resources ● Low budget, full ownership ● Total control
The Community https://scf.roer.com The Security Culture Framework: Templates and methodology Free Paid, Optional: 3rd party Paid, The Roer Group Manage Internally ● Use the Community for support and learning ● Free and open access ● Register to post questions and comments ● Help build and spread the competence!
https://scf.roer.com The Security Culture Framework Safe Navigation
The Community Manage Internally https://scf.roer.com ○ Design and manage program ○ Execute program ○ Run metrics and revisions ● Certified partners available in USA Certified Consulting Partner ● Partners to help: and Europe The Security Culture Framework: Templates and methodology Free Paid, Optional: 3rd party Paid, The Roer Group
https://scf.roer.com The Security Culture Framework Building Your Crew
The Security Culture Framework Certification Internal Training https://scf.roer.com Program Online Learn! by Roer Intelligence Reports SCF Application Tools Security Culture Program Security Culture Campaign Consulting On-Site Remote Coaching Services from The Roer Group
Certification Internal Training Program Online Learn! by Roer https://scf.roer.com The Security Culture Framework ● Professional training ○ Online (recorded and live) ○ On-Site (adapted to your needs) ○ Certified Security Culture Practitioner ● Options ○ Keynotes ○ Talks and Workshops ○ Round Table Facilitation Services from The Roer Group
Security Culture Program Security Culture Campaign https://scf.roer.com ● Campaign Mode ○ 12 weeks campaign ○ Define goals, target audience and activities ○ Execute, Measure and Report ● Program Mode ○ 18 months ○ Up to 6 Campaigns in serie ○ Program goals breaks down to Campaign goals Consulting The Security Culture Framework Services from The Roer Group
On-Site Remote Services from The Roer https://scf.roer.com The Security Culture Framework ● Remote Coaching ○ Phone and email ○ Unlimited* access to coach ○ Fixed fee = low risk ● On-Site Coaching ○ Phone, email and On-Site ○ Unlimited* access to coach ○ Fixed fee** = low risk Coaching *: Unlimited access means a maximum of 10 coaching hours per month. **: Fixed fee does not include travel+accommodation as required. Group
Intelligence Reports SCF Application https://scf.roer.com The Security Culture Framework ● Intelligence ○ What are the trends? ● Reports ○ How do we compare to others? ● SCF Application ○ Manage your Security Culture Program Tools ○ Annual Subscription Services from The Roer Group
https://scf.roer.com The Security Culture Framework Results Ahead!
Certification Internal Training Program Online Manage Internally https://scf.roer.com Intelligence Reports SCF Application On-Site Remote Certified Consulting Partner Security Culture Program Security Culture Campaign The Security Culture Framework: Templates and methodology The Community Free Paid, Optional: 3rd party Paid, The Roer Group Learn! by Roer Tools Consulting Coaching
https://scf.roer.com The Security Culture Framework Your Next Step
https://scf.roer.com Join the community Get Answers Download Templates Engage and Learn Build Security Culture! https://scf.roer.com
https://scf.roer.com Start Today! https://scf.roer.com

Recommended

The Security culture campaign explained in 5 minutes
The Security culture campaign explained in 5 minutesThe Security culture campaign explained in 5 minutes
The Security culture campaign explained in 5 minutesKai Roer
 
The Security Culture Conference 2016
The Security Culture Conference 2016 The Security Culture Conference 2016
The Security Culture Conference 2016 Kai Roer
 
International marketing (4)
International marketing (4)International marketing (4)
International marketing (4)Ganpurev Ganbold
 
GDPR and Security Culture: Measuring effectiveness
GDPR and Security Culture: Measuring effectivenessGDPR and Security Culture: Measuring effectiveness
GDPR and Security Culture: Measuring effectivenessKai Roer
 
GDPR practical info session for development
GDPR practical info session for developmentGDPR practical info session for development
GDPR practical info session for developmentTomppa Järvinen
 
Digital destinations launch presentation
Digital destinations launch presentationDigital destinations launch presentation
Digital destinations launch presentationThe Digital Hub - Bournemouth University
 
CDIS.pdf
CDIS.pdfCDIS.pdf
CDIS.pdfOmar Abdraboo
 
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUMTHE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUMMoreenMbogo
 

Recommended

The Security culture campaign explained in 5 minutes
The Security culture campaign explained in 5 minutesThe Security culture campaign explained in 5 minutes
The Security culture campaign explained in 5 minutesKai Roer
 
The Security Culture Conference 2016
The Security Culture Conference 2016 The Security Culture Conference 2016
The Security Culture Conference 2016 Kai Roer
 
International marketing (4)
International marketing (4)International marketing (4)
International marketing (4)Ganpurev Ganbold
 
GDPR and Security Culture: Measuring effectiveness
GDPR and Security Culture: Measuring effectivenessGDPR and Security Culture: Measuring effectiveness
GDPR and Security Culture: Measuring effectivenessKai Roer
 
GDPR practical info session for development
GDPR practical info session for developmentGDPR practical info session for development
GDPR practical info session for developmentTomppa Järvinen
 
Digital destinations launch presentation
Digital destinations launch presentationDigital destinations launch presentation
Digital destinations launch presentationThe Digital Hub - Bournemouth University
 
CDIS.pdf
CDIS.pdfCDIS.pdf
CDIS.pdfOmar Abdraboo
 
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUMTHE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUMMoreenMbogo
 
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM MoreenMbogo
 
From ideas to projects
From ideas to projectsFrom ideas to projects
From ideas to projectsFrieda Brioschi
 
Software management plans in research software
Software management plans in research softwareSoftware management plans in research software
Software management plans in research softwareShoaib Sufi
 
Anish Story Board_Revised
Anish Story Board_RevisedAnish Story Board_Revised
Anish Story Board_RevisedAnish Anthony
 
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...lisbk
 
Lessons learned managing nigerian projects
Lessons learned managing nigerian projectsLessons learned managing nigerian projects
Lessons learned managing nigerian projectsOjiugo Ajunwa
 
Planning For The Personalization Journey: From Empathy to Engagement
Planning For The Personalization Journey: From Empathy to Engagement Planning For The Personalization Journey: From Empathy to Engagement
Planning For The Personalization Journey: From Empathy to EngagementRachel Wandishin
 
Skill out partners and distribution
Skill out partners and distributionSkill out partners and distribution
Skill out partners and distributionkhawajaabdurrehman
 
Skill out Partners and Distribution
Skill out Partners and DistributionSkill out Partners and Distribution
Skill out Partners and DistributionOlya Kollen, PhD
 
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...Using Professional Development to Better Your Staff Efficacy, Adoption, and A...
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...TargetX
 
Scaling an Open Source Sponsorship Program
Scaling an Open Source Sponsorship ProgramScaling an Open Source Sponsorship Program
Scaling an Open Source Sponsorship ProgramAll Things Open
 
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)PCGI
 
TIAS LinkedIn Training and Online Networking Skills
TIAS LinkedIn Training and Online Networking SkillsTIAS LinkedIn Training and Online Networking Skills
TIAS LinkedIn Training and Online Networking SkillsNederlandse Social Media Academie (NSMA)
 
How To Drive Social Leads From Events
How To Drive Social Leads From EventsHow To Drive Social Leads From Events
How To Drive Social Leads From EventsOgilvy Consulting
 
Effective Projects: Internationally and Locally
Effective Projects: Internationally and LocallyEffective Projects: Internationally and Locally
Effective Projects: Internationally and LocallyRotary International
 
LAZIO DIGILUX PPT.pptx
LAZIO DIGILUX PPT.pptxLAZIO DIGILUX PPT.pptx
LAZIO DIGILUX PPT.pptxKAVYAPRADEEP12
 
Kick-Off Presentation.pptx
Kick-Off Presentation.pptxKick-Off Presentation.pptx
Kick-Off Presentation.pptxgdsckul
 
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...No one said this would be easy: Sustaining Webrecorder as a robust web archiv...
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...Anna Perricci
 
Near east university
Near east universityNear east university
Near east universityDerrickDusabe
 
Digital Proposal for Qatar Traffic Department
Digital Proposal for Qatar Traffic DepartmentDigital Proposal for Qatar Traffic Department
Digital Proposal for Qatar Traffic DepartmentRobin Goel
 
Measuring security culture is different from counting employees
Measuring security culture is different from counting employeesMeasuring security culture is different from counting employees
Measuring security culture is different from counting employeesKai Roer
 
Hacking You Mind - How you are being exploited by hackers of all sorts!
Hacking You Mind - How you are being exploited by hackers of all sorts!Hacking You Mind - How you are being exploited by hackers of all sorts!
Hacking You Mind - How you are being exploited by hackers of all sorts!Kai Roer
 

More Related Content

Similar to Navigating To Your Security Culture Goal

THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM MoreenMbogo
 
Software management plans in research software
Software management plans in research softwareSoftware management plans in research software
Software management plans in research softwareShoaib Sufi
 
Anish Story Board_Revised
Anish Story Board_RevisedAnish Story Board_Revised
Anish Story Board_RevisedAnish Anthony
 
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...lisbk
 
Lessons learned managing nigerian projects
Lessons learned managing nigerian projectsLessons learned managing nigerian projects
Lessons learned managing nigerian projectsOjiugo Ajunwa
 
Planning For The Personalization Journey: From Empathy to Engagement
Planning For The Personalization Journey: From Empathy to Engagement Planning For The Personalization Journey: From Empathy to Engagement
Planning For The Personalization Journey: From Empathy to EngagementRachel Wandishin
 
Skill out partners and distribution
Skill out partners and distributionSkill out partners and distribution
Skill out partners and distributionkhawajaabdurrehman
 
Skill out Partners and Distribution
Skill out Partners and DistributionSkill out Partners and Distribution
Skill out Partners and DistributionOlya Kollen, PhD
 
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...Using Professional Development to Better Your Staff Efficacy, Adoption, and A...
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...TargetX
 
Scaling an Open Source Sponsorship Program
Scaling an Open Source Sponsorship ProgramScaling an Open Source Sponsorship Program
Scaling an Open Source Sponsorship ProgramAll Things Open
 
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)PCGI
 
How To Drive Social Leads From Events
How To Drive Social Leads From EventsHow To Drive Social Leads From Events
How To Drive Social Leads From EventsOgilvy Consulting
 
Effective Projects: Internationally and Locally
Effective Projects: Internationally and LocallyEffective Projects: Internationally and Locally
Effective Projects: Internationally and LocallyRotary International
 
LAZIO DIGILUX PPT.pptx
LAZIO DIGILUX PPT.pptxLAZIO DIGILUX PPT.pptx
LAZIO DIGILUX PPT.pptxKAVYAPRADEEP12
 
Kick-Off Presentation.pptx
Kick-Off Presentation.pptxKick-Off Presentation.pptx
Kick-Off Presentation.pptxgdsckul
 
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...No one said this would be easy: Sustaining Webrecorder as a robust web archiv...
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...Anna Perricci
 
Near east university
Near east universityNear east university
Near east universityDerrickDusabe
 
Digital Proposal for Qatar Traffic Department
Digital Proposal for Qatar Traffic DepartmentDigital Proposal for Qatar Traffic Department
Digital Proposal for Qatar Traffic DepartmentRobin Goel
 

Similar to Navigating To Your Security Culture Goal (20)

THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
THE 3rd INTERNATIONAL MONITORING AND EVALUATION SYMPOSIUM
 
From ideas to projects
From ideas to projectsFrom ideas to projects
From ideas to projects
 
Software management plans in research software
Software management plans in research softwareSoftware management plans in research software
Software management plans in research software
 
Anish Story Board_Revised
Anish Story Board_RevisedAnish Story Board_Revised
Anish Story Board_Revised
 
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...
BS 8878: Systematic Approaches to Documenting Web Accessibility Policies and ...
 
Lessons learned managing nigerian projects
Lessons learned managing nigerian projectsLessons learned managing nigerian projects
Lessons learned managing nigerian projects
 
Planning For The Personalization Journey: From Empathy to Engagement
Planning For The Personalization Journey: From Empathy to Engagement Planning For The Personalization Journey: From Empathy to Engagement
Planning For The Personalization Journey: From Empathy to Engagement
 
Skill out partners and distribution
Skill out partners and distributionSkill out partners and distribution
Skill out partners and distribution
 
Skill out Partners and Distribution
Skill out Partners and DistributionSkill out Partners and Distribution
Skill out Partners and Distribution
 
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...Using Professional Development to Better Your Staff Efficacy, Adoption, and A...
Using Professional Development to Better Your Staff Efficacy, Adoption, and A...
 
Scaling an Open Source Sponsorship Program
Scaling an Open Source Sponsorship ProgramScaling an Open Source Sponsorship Program
Scaling an Open Source Sponsorship Program
 
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)
M_o_R Management of Risk Overview Paradigm Consulting Group (PCGI)
 
TIAS LinkedIn Training and Online Networking Skills
TIAS LinkedIn Training and Online Networking SkillsTIAS LinkedIn Training and Online Networking Skills
TIAS LinkedIn Training and Online Networking Skills
 
How To Drive Social Leads From Events
How To Drive Social Leads From EventsHow To Drive Social Leads From Events
How To Drive Social Leads From Events
 
Effective Projects: Internationally and Locally
Effective Projects: Internationally and LocallyEffective Projects: Internationally and Locally
Effective Projects: Internationally and Locally
 
LAZIO DIGILUX PPT.pptx
LAZIO DIGILUX PPT.pptxLAZIO DIGILUX PPT.pptx
LAZIO DIGILUX PPT.pptx
 
Kick-Off Presentation.pptx
Kick-Off Presentation.pptxKick-Off Presentation.pptx
Kick-Off Presentation.pptx
 
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...No one said this would be easy: Sustaining Webrecorder as a robust web archiv...
No one said this would be easy: Sustaining Webrecorder as a robust web archiv...
 
Near east university
Near east universityNear east university
Near east university
 
Digital Proposal for Qatar Traffic Department
Digital Proposal for Qatar Traffic DepartmentDigital Proposal for Qatar Traffic Department
Digital Proposal for Qatar Traffic Department
 

More from Kai Roer

Measuring security culture is different from counting employees
Measuring security culture is different from counting employeesMeasuring security culture is different from counting employees
Measuring security culture is different from counting employeesKai Roer
 
Hacking You Mind - How you are being exploited by hackers of all sorts!
Hacking You Mind - How you are being exploited by hackers of all sorts!Hacking You Mind - How you are being exploited by hackers of all sorts!
Hacking You Mind - How you are being exploited by hackers of all sorts!Kai Roer
 
Selling security - understanding how mental patterns and bias impacts your me...
Selling security - understanding how mental patterns and bias impacts your me...Selling security - understanding how mental patterns and bias impacts your me...
Selling security - understanding how mental patterns and bias impacts your me...Kai Roer
 
The Active Listening Cheat Sheet
The Active Listening Cheat SheetThe Active Listening Cheat Sheet
The Active Listening Cheat SheetKai Roer
 
The Cloud Security Rules
The Cloud Security RulesThe Cloud Security Rules
The Cloud Security RulesKai Roer
 
Jci Viking Weekend 2009
Jci Viking Weekend 2009Jci Viking Weekend 2009
Jci Viking Weekend 2009Kai Roer
 

More from Kai Roer (6)

Measuring security culture is different from counting employees
Measuring security culture is different from counting employeesMeasuring security culture is different from counting employees
Measuring security culture is different from counting employees
 
Hacking You Mind - How you are being exploited by hackers of all sorts!
Hacking You Mind - How you are being exploited by hackers of all sorts!Hacking You Mind - How you are being exploited by hackers of all sorts!
Hacking You Mind - How you are being exploited by hackers of all sorts!
 
Selling security - understanding how mental patterns and bias impacts your me...
Selling security - understanding how mental patterns and bias impacts your me...Selling security - understanding how mental patterns and bias impacts your me...
Selling security - understanding how mental patterns and bias impacts your me...
 
The Active Listening Cheat Sheet
The Active Listening Cheat SheetThe Active Listening Cheat Sheet
The Active Listening Cheat Sheet
 
The Cloud Security Rules
The Cloud Security RulesThe Cloud Security Rules
The Cloud Security Rules
 
Jci Viking Weekend 2009
Jci Viking Weekend 2009Jci Viking Weekend 2009
Jci Viking Weekend 2009
 

Recently uploaded

Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...lizamodels9
 
Regression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRegression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRavindra Nath Shukla
 
Grateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdfGrateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdfPaul Menig
 
VIP Call Girls In Saharaganj ( Lucknow ) 🔝 8923113531 🔝 Cash Payment (COD) 👒
VIP Call Girls In Saharaganj ( Lucknow ) 🔝 8923113531 🔝 Cash Payment (COD) 👒VIP Call Girls In Saharaganj ( Lucknow ) 🔝 8923113531 🔝 Cash Payment (COD) 👒
VIP Call Girls In Saharaganj ( Lucknow ) 🔝 8923113531 🔝 Cash Payment (COD) 👒anilsa9823
 
Insurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usageInsurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usageMatteo Carbone
 
Best Basmati Rice Manufacturers in India
Best Basmati Rice Manufacturers in IndiaBest Basmati Rice Manufacturers in India
Best Basmati Rice Manufacturers in IndiaShree Krishna Exports
 
Cracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxCracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxWorkforce Group
 
M.C Lodges -- Guest House in Jhang.
M.C Lodges -- Guest House in Jhang.M.C Lodges -- Guest House in Jhang.
M.C Lodges -- Guest House in Jhang.Aaiza Hassan
 
Event mailer assignment progress report .pdf
Event mailer assignment progress report .pdfEvent mailer assignment progress report .pdf
Event mailer assignment progress report .pdftbatkhuu1
 
Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Neil Kimberley
 
RSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataRSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataExhibitors Data
 
A305_A2_file_Batkhuu progress report.pdf
A305_A2_file_Batkhuu progress report.pdfA305_A2_file_Batkhuu progress report.pdf
A305_A2_file_Batkhuu progress report.pdftbatkhuu1
 
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptxB.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptxpriyanshujha201
 
9599632723 Top Call Girls in Delhi at your Door Step Available 24x7 Delhi
9599632723 Top Call Girls in Delhi at your Door Step Available 24x7 Delhi9599632723 Top Call Girls in Delhi at your Door Step Available 24x7 Delhi
9599632723 Top Call Girls in Delhi at your Door Step Available 24x7 DelhiCall Girls in Delhi
 
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...Any kyc Account
 
Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...Roland Driesen
 
Progress Report - Oracle Database Analyst Summit
Progress Report - Oracle Database Analyst SummitProgress Report - Oracle Database Analyst Summit
Progress Report - Oracle Database Analyst SummitHolger Mueller
 
Pharma Works Profile of Karan Communications
Pharma Works Profile of Karan CommunicationsPharma Works Profile of Karan Communications
Pharma Works Profile of Karan Communicationskarancommunications
 
A DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANA DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANIlamathiKannappan
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Serviceritikaroy0888
 

Recently uploaded (20)

Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
Call Girls In Holiday Inn Express Gurugram➥99902@11544 ( Best price)100% Genu...
 
Regression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRegression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear Regression
 
Grateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdfGrateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdf
 
VIP Call Girls In Saharaganj ( Lucknow ) 🔝 8923113531 🔝 Cash Payment (COD) 👒
VIP Call Girls In Saharaganj ( Lucknow ) 🔝 8923113531 🔝 Cash Payment (COD) 👒VIP Call Girls In Saharaganj ( Lucknow ) 🔝 8923113531 🔝 Cash Payment (COD) 👒
VIP Call Girls In Saharaganj ( Lucknow ) 🔝 8923113531 🔝 Cash Payment (COD) 👒
 
Insurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usageInsurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usage
 
Best Basmati Rice Manufacturers in India
Best Basmati Rice Manufacturers in IndiaBest Basmati Rice Manufacturers in India
Best Basmati Rice Manufacturers in India
 
Cracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxCracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptx
 
M.C Lodges -- Guest House in Jhang.
M.C Lodges -- Guest House in Jhang.M.C Lodges -- Guest House in Jhang.
M.C Lodges -- Guest House in Jhang.
 
Event mailer assignment progress report .pdf
Event mailer assignment progress report .pdfEvent mailer assignment progress report .pdf
Event mailer assignment progress report .pdf
 
Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023
 
RSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataRSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors Data
 
A305_A2_file_Batkhuu progress report.pdf
A305_A2_file_Batkhuu progress report.pdfA305_A2_file_Batkhuu progress report.pdf
A305_A2_file_Batkhuu progress report.pdf
 
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptxB.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
 
9599632723 Top Call Girls in Delhi at your Door Step Available 24x7 Delhi
9599632723 Top Call Girls in Delhi at your Door Step Available 24x7 Delhi9599632723 Top Call Girls in Delhi at your Door Step Available 24x7 Delhi
9599632723 Top Call Girls in Delhi at your Door Step Available 24x7 Delhi
 
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
KYC-Verified Accounts: Helping Companies Handle Challenging Regulatory Enviro...
 
Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...
 
Progress Report - Oracle Database Analyst Summit
Progress Report - Oracle Database Analyst SummitProgress Report - Oracle Database Analyst Summit
Progress Report - Oracle Database Analyst Summit
 
Pharma Works Profile of Karan Communications
Pharma Works Profile of Karan CommunicationsPharma Works Profile of Karan Communications
Pharma Works Profile of Karan Communications
 
A DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANA DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMAN
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
 

Navigating To Your Security Culture Goal

  • 1. https://scf.roer.com The Security Culture Framework Navigating To Your Goal
  • 2. Security Culture “ ” Kai Roer, Founding Partner https://scf.roer.com The ideas, customs, and social behavior of a particular people or society, that allows them to be free from danger or threats.
  • 3. https://scf.roer.com The Security Culture Framework A Quick Introduction
  • 4. ● Assess where you currently are ○ Create baselines ○ Understand what to measure ○ Understand how to measure ● Visualise where you would actually like to be ○ Define clear (SMART) goals ○ Describe the goal using metrics https://scf.roer.com The Security Culture Framework Know Your Goals
  • 5. The Security Culture Framework ● Look at who you will need to involve along the journey ○ HR, Marketing and PR ○ CxO, Employees, Stakeholders ● Analyze the audience ○ Who are my target audience? ○ What do they care about? ○ How do they communicate? ○ How do I best adapt the security https://scf.roer.com message to their needs? Know Your Audience
  • 6. The Security Culture Framework ● Choose and use topics and https://scf.roer.com activities that leads towards your defined goals ● Use different activities to build competence ● Drive behavioral change through topics and activities that are relevant to your program Know Your Topics
  • 7. ● Plan for success! ● Organize the work in time-limited Campaigns to help you stay in control ● Run campaigns in parallel in larger organizations to target different audiences, topics and goals ● Run Campaigns in series to build a complete security culture program https://scf.roer.com The Security Culture Framework Know Your Plan
  • 8. https://scf.roer.com The Security Culture Framework Plotting a Course
  • 9. The Community https://scf.roer.com The Security Culture Framework: Templates and methodology Free Paid, Optional: 3rd party Paid, The Roer Group Manage Internally ● The framework is free and open ● Download templates ● How-To guides for each template ● Published with a Creative Commons license. ● https://scf.roer.com
  • 10. The Community https://scf.roer.com The Security Culture Framework: Templates and methodology Free Paid, Optional: 3rd party Paid, The Roer Group Manage Internally ● Manage your own Security Culture Program ● Use internal resources ● Low budget, full ownership ● Total control
  • 11. The Community https://scf.roer.com The Security Culture Framework: Templates and methodology Free Paid, Optional: 3rd party Paid, The Roer Group Manage Internally ● Use the Community for support and learning ● Free and open access ● Register to post questions and comments ● Help build and spread the competence!
  • 12. https://scf.roer.com The Security Culture Framework Safe Navigation
  • 13. The Community Manage Internally https://scf.roer.com ○ Design and manage program ○ Execute program ○ Run metrics and revisions ● Certified partners available in USA Certified Consulting Partner ● Partners to help: and Europe The Security Culture Framework: Templates and methodology Free Paid, Optional: 3rd party Paid, The Roer Group
  • 14. https://scf.roer.com The Security Culture Framework Building Your Crew
  • 15. The Security Culture Framework Certification Internal Training https://scf.roer.com Program Online Learn! by Roer Intelligence Reports SCF Application Tools Security Culture Program Security Culture Campaign Consulting On-Site Remote Coaching Services from The Roer Group
  • 16. Certification Internal Training Program Online Learn! by Roer https://scf.roer.com The Security Culture Framework ● Professional training ○ Online (recorded and live) ○ On-Site (adapted to your needs) ○ Certified Security Culture Practitioner ● Options ○ Keynotes ○ Talks and Workshops ○ Round Table Facilitation Services from The Roer Group
  • 17. Security Culture Program Security Culture Campaign https://scf.roer.com ● Campaign Mode ○ 12 weeks campaign ○ Define goals, target audience and activities ○ Execute, Measure and Report ● Program Mode ○ 18 months ○ Up to 6 Campaigns in serie ○ Program goals breaks down to Campaign goals Consulting The Security Culture Framework Services from The Roer Group
  • 18. On-Site Remote Services from The Roer https://scf.roer.com The Security Culture Framework ● Remote Coaching ○ Phone and email ○ Unlimited* access to coach ○ Fixed fee = low risk ● On-Site Coaching ○ Phone, email and On-Site ○ Unlimited* access to coach ○ Fixed fee** = low risk Coaching *: Unlimited access means a maximum of 10 coaching hours per month. **: Fixed fee does not include travel+accommodation as required. Group
  • 19. Intelligence Reports SCF Application https://scf.roer.com The Security Culture Framework ● Intelligence ○ What are the trends? ● Reports ○ How do we compare to others? ● SCF Application ○ Manage your Security Culture Program Tools ○ Annual Subscription Services from The Roer Group
  • 20. https://scf.roer.com The Security Culture Framework Results Ahead!
  • 21. Certification Internal Training Program Online Manage Internally https://scf.roer.com Intelligence Reports SCF Application On-Site Remote Certified Consulting Partner Security Culture Program Security Culture Campaign The Security Culture Framework: Templates and methodology The Community Free Paid, Optional: 3rd party Paid, The Roer Group Learn! by Roer Tools Consulting Coaching
  • 22. https://scf.roer.com The Security Culture Framework Your Next Step
  • 23. https://scf.roer.com Join the community Get Answers Download Templates Engage and Learn Build Security Culture! https://scf.roer.com
  • 24. https://scf.roer.com Start Today! https://scf.roer.com