Security news aggregator

Latest coverage for Culture

Explore the intersection of society and information security, where culture shapes cyber norms and practices in our digital world.

4 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Information security culture describes the shared attitudes, behaviors, and practices within an organization that influence how employees handle cybersecurity. It shapes whether staff consistently follow security protocols, recognize phishing attempts, and report suspicious activity. This culture is reflected in everyday actions, not just formal policies, affecting how effectively security measures are implemented across all levels.

A strong security culture reduces risks like social engineering attacks and insider threats by promoting vigilance and accountability. Regular training and clear communication help embed security awareness, making employees active participants in defense rather than passive users. Without this cultural foundation, technical controls may be undermined by human error or neglect, increasing the likelihood of successful attacks and data exposure.

Showing 4 most recent headlines Filtered view
Bank Info Security 2 years, 3 months ago

The US or the UK: Where Should You Get a Cybersecurity Job?

Differences in How the United States and United Kingdom Think About CybersecurityThe differences between working in cybersecurity in the U.K. and U.S. are not just a matter of accent or office culture; they are a study in how national security priorities, regulatory environments and cultural attitudes toward privacy and surveillance affect cyber workers' professional lives.

CISA calls for 'fundamental, security-focused reforms' to happen ASAP, delaying work on other software A review of the June 2023 attack on Microsoft's Exchange Online hosted email service – which saw accounts used by senior US officials compromised by a China-linked group called "Storm-0558" – has found that the incident would have been preventable save for Microsoft's lax infosec culture and sub-par cloud security precautions.…

CISA calls for 'fundamental, security-focused reforms' to happen ASAP, delaying work on other software A review of the June 2023 attack on Microsoft's Exchange Online hosted email service – which saw accounts used by senior US officials compromised by a China-linked group called "Storm-0558" – has found that the incident would have been preventable save for Microsoft's lax infosec culture and sub-par cloud security precautions.…

Bank Info Security 2 years, 3 months ago

How to Hire, Retain and Inspire Exceptional Employees

Leading Means Admitting What You Don't Know - And Other Tips for LeadersBeing an effective leader involves recognizing and embracing the expertise of others, particularly in areas where your own knowledge is limited. Here are tips on how to attract top talent and retain these exceptional employees by fostering a culture of excellence, innovation and continuous learning.