This week we are joined by Dr David Burkus , one of the world’s leading business thinkers and best-selling author of five books on the topic of business and leadership . Dr Burkus has worked with the leadership teams of some internationally known names such as PepsiCo, Adobe and NASA. In this episode, “Storytelling Superconnectors: Unleashing Purpose Beyond Metrics in Your Cybersecurity Function” , Dr Burkus challenges the concept of Dunbar’s Number as we discuss the power of human networks, and...
Apr 10, 2024•29 min•Ep 25•Transcript available on Metacast This week we are joined by Jenn Calland , a seasoned Data Analyst , Analytics Engineer, former Platform Engineer and Full Stack Developer with expertise spanning Google Cloud, Looker, BigQuery, and many other technologies. In this episode, Data, Data Everywhere, But How Do We Make It Safe to Share? We are going explore the relationship between data, cybersecurity and our personal and organisational desire for convenience which can sometimes lead to insecure and risky behaviour. Jenn warns ...
Apr 03, 2024•36 min•Ep 24•Transcript available on Metacast Last episode we ended by talking with Bec about how cybercriminals leverage the fight-or-flight response and get you to do things you wouldn’t normally do, like share bank details, through amygdala hijacking . Bec concluded the episode by giving us some great advice on how we can retrain ourselves NOT to be so reactive and hopefully, stop ourselves from doing something rash. In this episode, Awareness ≠ Behavioural Change - Rethinking Cybersecurity Training , we’re going to build upon what Bec d...
Mar 28, 2024•35 min•Ep 23•Transcript available on Metacast This week we are joined by Bec McKeown, a chartered psychologist with extensive experience in carrying out applied research for organisations including the UK Ministry of Defence and the founder and director of Mind Science , an independent organisation that works with cybersecurity professionals In this episode, Hands Off My Amygdala! The Psychology Behind Cybersecurity, we are going to hear about Bec’s varied and interesting career in advising people in highly stressful situations to be reflec...
Mar 21, 2024•33 min•Ep 22•Transcript available on Metacast This week we are joined by Sabrina Segal, an integrity, risk, and compliance advisor, with almost 20 years of experience in the public, private, and third-sectors. In this week’s episode, Bringing the Curtain Down on Risk Theatre and Applauding objective-centred Risk Management , Sabrina shares with us, a quite frankly amazing model to work from: The OCRM, Objective-centred Risk Management . This model a great antidote to what Sabrina describes as ‘ risk theatre ’ which is the perfor...
Mar 14, 2024•31 min•Ep 21•Transcript available on Metacast This week we are joined by Sabrina Segal, an integrity, risk, and compliance advisor, with almost 20 years of experience in the public, private, and third-sectors. In this episode, Not New, but Novel - Tackling Risk in the Third Sector, We take a look at the challenges facing the third sector when it comes to cybersecurity and technology risks. The third sector, which includes charities and non-profits, is often overlooked or underestimated when it comes to cybersecurity and risk managemen...
Mar 07, 2024•31 min•Ep 20•Transcript available on Metacast This Episode we are joined by Amy Kouppas, a Scrum Master , D&I lead, and founder of a Women’s Health & Wellbeing group at Sky. We are talking about all things agile and scrum! Most organisations have some form of agile methodologies, and the likelihood is, yours does too but what is it? What is Kanban? What is Scrum? What does a Scrum master do and why are they always sprinting? Amy helps us answer these questions and more in this episode: Fun with Purpose - A Scrum Guide! I...
Feb 29, 2024•39 min•Ep 19•Transcript available on Metacast T his Episode we are joined by Damjan Obal, Head of design at Ardoq, lecturer and international speaker on all things design and data. In this episode, And the Bafta for Best Cybersecurity Awareness Training Goes To… , we are looking at how we practically apply design principles to our security awareness programmes, with things like design thinking, the double diamond design method, opportunity solution trees and much much more! We also look at the dangers of gamification and how to ...
Feb 22, 2024•23 min•Ep 18•Transcript available on Metacast This Episode we are joined by Damjan Obal, Head of design at Ardoq, lecturer and international speaker on all things design and data. In this episode, F.U.D OFF! - Cybersecurity Awareness Beyond Compliance and Boredom, we learn from Damjan about the importance of storytelling, the difference between game theory and gamification, what accessibility champions get so right that we in security get it so wrong, and how to design a security awareness programme that resonates with people and enco...
Feb 15, 2024•31 min•Ep 17•Transcript available on Metacast This Episode we are joined by James Hall, developer and Founder of Parallex , a digital consultancy that focuses on ‘building better digital experiences together’. In this episode, That’s illuminating! Protecting Aberdeen’s IOT Street Lights from Cyber attacks ! James shares his experience on securing public utilities, other IOT devices, how he ‘sells’ security as a value add to his stakeholders, and if Bug Bounties are actually worth doing! ————— In this Episode we cover: Agile means no do...
Feb 08, 2024•41 min•Ep 16•Transcript available on Metacast Today we are joined by Paula Cizek , Chief Research Officer at Nobl, where she guides leaders and teams through the change management process, from assessing the organization’s readiness for change to implementing initiatives. In this episode, we explore the fascinating topic of Corporate Change and how its lessons can be applied to cybersecurity. In the vast ocean of the corporate world, change is as constant as the tides. It can be exhilarating for some and daunting for others. As leaders, we ...
Feb 01, 2024•45 min•Ep 15•Transcript available on Metacast Welcome to the third part of our AI mini-series. In this episode, Jeff and Lianne discuss how AI is transforming the world of cybersecurity, and what you need to know to stay ahead of the curve. They share their personal experiences with using AI tools, such as the custom GPT suite and the tool they are creating, Security Sage, to enhance their security practices and workflows. They also explore the challenges and risks that AI poses to cybersecurity, such as phishing, vishing, OSINT, data leaks...
Jan 04, 2024•42 min•Ep 14•Transcript available on Metacast No episode this week! We’re back to finish off our AI mini-series on the 4th January where your hosts, Jeff Watkins and Lianne Potter discuss how they utilise AI in their work as cybersecurity and tech specialists, their own hints and tips on how to get the best out of the tool, and their predictions for AI usage within the security field in 2024. If you’re missing your Compromising positions fix, why not visit our back catalogue of 13 fantastic episodes, or watch our festival special, The 12 Da...
Dec 28, 2023•36 sec•Ep 14•Transcript available on Metacast Welcome to the second part of our AI mini-series. Last week, Helena Hill, UX and AI expert provided us with some great practical advice on how to navigate Large language models like ChatGPT in our daily work. She gave us ideas for usage and also what we should be wary of both from a cybersecurity perspective and a quality perspective. See the show notes for a link to that episode, it is a must-listen if you’re interested in this topic! As we’ve been talking to our guests this year, the topic of&...
Dec 21, 2023•22 min•Ep 13•Transcript available on Metacast This week we are joined by Helena Hill, a seasoned UX Strategist and Consultant and AI expert with a wealth of experience spanning diverse clients, from pre-start-ups to global industry giants. Last week Helena taught us how we in the cybersecurity team can effectively use the User experience team, and its principles to improve our security controls and create a better journey. If you’ve not listened to that episode yet, do check it out. This episode we’re asking Helena about her other exp...
Dec 14, 2023•23 min•Ep 12•Transcript available on Metacast This week we are joined by Helena Hill, a seasoned UX Strategist and Consultant and AI expert with a wealth of experience spanning diverse clients, from pre-start-ups to global industry giants. In this episode, we explore the fascinating topic of UX and cybersecurity. We’re going to learn from the UX function to see how we can create a better user experience for people on their security journey, learn how to get buy-in from the business about implementing controls such as MFA, and how to ‘...
Dec 07, 2023•38 min•Ep 11•Transcript available on Metacast This week our guest is Melina Palmer, a renowned keynote speaker in behavioural economics and the CEO of The Brainy Business, as well as hosting one of the best podcasts on the subject of the practical application of behavioural economics. In this episode, we're going to discuss the art of influencing both up and down, and how to tailor your cybersecurity message to different audiences. Melina teaches us that it's not about the cookie - that is, it's not just about the product or cybersecu...
Nov 30, 2023•25 min•Ep 10•Transcript available on Metacast This week our guest is Melina Palmer, a renowned keynote speaker in behavioural economics and the CEO of The Brainy Business, as well as hosting one of the best podcasts on the subject of the practical application of behavioural economics. In this episode, we discuss how silos and tribal mentalities occur in the workplace due to confirmation bias and how we can expand the circle of empathy to create a more cohesive team. We'll also delve into the issue of time discounting, availability bias and ...
Nov 23, 2023•33 min•Ep 9•Transcript available on Metacast A word of warning listeners, we do discuss the darker side of crime, including human trafficking which some of our listeners may find upsetting. If this isn’t for you, feel free to skip this one and we’ll see you next week. —————————————————————— This week our guest is Ray Blake. Ray is an advisor on financial crime matters and co-creator of the Dark Money Files podcast. In this episode, we explore the motivations driving individuals to commit such crimes, probing whether it's sheer greed, the a...
Nov 16, 2023•42 min•Ep 8•Transcript available on Metacast This week we have a very special guest, Reema Vadoliya. Reema is the passionate business founder of data consultancy, People of Data, a gifted storyteller, and a professional problem-solver. In this episode, Reema shares her insights on how to collaborate more effectively between cybersecurity and data professionals. She emphasizes the importance of empathetic communication, how sometimes quantifying risks is about gut feeling, not just metrics… We look at how we can use data-driven ...
Nov 09, 2023•37 min•Ep 7•Transcript available on Metacast Welcome to part two of our enlightening discussion with Matt Ballentine, Engagement Manager at Equal Experts. In this episode, Lianne Potter and Jeff Watkins continue this conversation and dive deeper into the nuances of modern-day communication and work dynamics. Do we need to set new etiquette for engaging in conversations? How do we establish norms when our work environment is evolving? Matt also shares insights on the importance of security in our workflow, the power of networking and the ne...
Nov 02, 2023•35 min•Ep 6•Transcript available on Metacast This Episode we are joined by Matt Ballentine, an Engagement Manager at Equal Experts. We do a deep dive into workplace culture and user-needs-centric cybersecurity. Matt believes that the essence of modern leadership isn't just about supervision, but about becoming a nexus between people and ideas. From the transformative shift of T-shaped managers to the pivotal role of psychological safety, we'll journey through the strategies leaders need to adopt to thrive in today's interconnected age. Get...
Oct 25, 2023•29 min•Ep 5•Transcript available on Metacast In this episode, our guest Josh Nesbitt, CTO of Glean a Leeds EdTech startup, shares his insights on securing the data of vulnerable people, the importance of accessibility and compliance in production-ready products, and the challenges of achieving usability, functionality, and security in concert. Join us as we debunk common misconceptions around agile and explore how security teams can be more creative in their approach. We’ll talk about how to use tooling and engagement to get en...
Oct 18, 2023•36 min•Ep 4•Transcript available on Metacast In this episode, we continue our conversation with Christian Hunt, the founder of Human Risk, a firm that helps organisations with ethics and compliance. Christian shares his insights on why blanket bans are ineffective and how small acts of rebellion can lead to bigger problems. He also explains why treating employees with empathy and respect is more productive than treating them like potential criminals. Finally, he introduces his H.U.M.A.N.S Framework, and guides us in this fantastic example ...
Oct 11, 2023•39 min•Ep 3•Transcript available on Metacast This episode we've got a super interesting interview with Christian Hunt, the founder of Human Risk. He's a Behavioural Science expert and author of the book 'Humanizing Rules', which explores how we can use Behavioural Science to improve compliance and ethics. In this interview, Christian shares his insights on how important it is to consider the humans behind compliance and cybersecurity. He explains that it's not just about following documentation, but also about the people who are resp...
Oct 05, 2023•29 min•Ep 2•Transcript available on Metacast Episode 0 - Trailer
Sep 14, 2023•2 min•Ep 1•Transcript available on Metacast 
