Register Here
If you are attending the SANS Munich June 2025 training event you do not need to register to attend this event.
SANS Community Nights are a great way to stay in touch with your local InfoSec community and to hear the latest in technical wizardry, industry intelligence, and thought leadership from our amazing instructors.
Join us at:
Munich Marriott Hotel, Berliner Str. 93, 80805, Münich
View the agenda below:
Tuesday 1st July 2025
17:30 – 18:00
Registration and Drinks
18:00 – 19:00
To err is human, to profit is criminal: the psychology of cyber-attacks and human error with John Scott
19:00 – 20:00
Security Culture Unleashed: Transforming Mindsets, Driving Change with Lance Spitzner
Abstracts:
To err is human, to profit is criminal: the psychology of cyber-attacks and human error with John Scott
In Cybersecurity, you often hear the phrase “People are the weakest link”. Every year well respected reports show that human error is a significant factor in 60-80% of all cybersecurity breaches reported. And it seems like no matter what organisations do; those numbers don’t really change. But very often, the problem isn’t with the people, it’s with organisational misunderstandings over why human errors occur. Bluntly, blame is often misplaced – poor system design and unrealistic expectations have their part to play as well. And that’s without mentioning the fact that cybercriminals seek to exploit and encourage human error to their advantage. In this talk, we’ll look at the hard-won lessons from health and safety, and apply them to a security context. We’ll see how lessons from healthcare and aviation can inspire more effective strategies in cybersecurity. We’ll understand why errors occur, and the different sorts of errors that exist. We’ll see how cyber criminals push people to encourage errors. And we’ll explore strategies that leaders, managers and security teams can apply to reduce risk and improve outcomes. By shifting our perspectives and applying these lessons, we can cultivate a secure culture where people are empowered to succeed, not set up to fail.
Security Culture Unleashed: Transforming Mindsets, Driving Change with Lance Spitzner
Are you frustrated by the vast amounts of money you and your team have invested in cutting-edge security tools, implemented the latest frameworks, and hired top talent, yet somehow, crucial security initiatives are not gaining traction? Security teams, do you feel overwhelmed, like no one is listening and the need to scale the impact of your efforts? ? Learn how to engage and transform your organization into the biggest believers and supporters of cybersecurity by institutionalizing a strong security culture.
- What is security culture and common indicators of both a weak and strong security culture
- Top three drivers of a strong security culture and how to action them
- Five quick wins to building a stronger security culture (including leveraging AI)
- The most common mistakes security teams and leaders make
- How to quantify and action your security culture
Every organization has a security culture, the question is do you have the one you want?