Publishing Details
About This Podcast
Podcasting 2.0 Features
Explore Statistics
Recent Episodes
No Threat Intel Team? No Problem. Let’s Pretend You Do! with Mike Kosak
In this episode, Mike Kosak explains what threat intelligence really is (Mike’s former boss said you have to “rub some thinking on it.”), how to define priority intelligence requirements (PIRs), how…
We Regret to Inform You: Your Phishing Training Did Nothing with Ariana Mirian
You click on a link in an email—as one does. Suddenly you see a message from your organization, “You’ve been phished! Now you need some training!” What do you do next? If you’re like most busy…
Trust Me Maybe: Building Trust in Human-AI Partnerships in Security
In this episode, I speak with three guests from diverse backgrounds who share a common goal: Building trust in human-AI partnerships in security. We originally came together for a panel at the…
XDR, EDR, SIEM, SOAR…Snooze: Cybersecurity Marketing Real Talk with Gianna Whitver
You're a founder with a great cybersecurity product—but no one knows or cares. Or you're a marketer drowning in jargon (hey, customers hate acronyms, too), trying to figure out what works and what…
Here Comes the Sludge with Kelly Shortridge and Josiah Dykstra
Users, threat actors, and the system design all influence—and are influenced by—one another. To design safer systems, we first need to understand the players who operate within those systems. Kelly…
Human-Centered Security In the Wild: Jordan Girman and Mike Kosak On Security and Product Team Collaboration at Lastpass
Imagine a world where product teams collaborate with security teams. Where product designers can shadow their security peers. A place where security team members believe communication is one of the…
Dear Security Vendors, Here’s What Security Teams Want You to Know with Paul Robinson
Where are security tools failing security teams? What are security teams looking for when they visit a security vendor marketing website? Paul Robinson, security expert and founder of Tempus Network,…
From Tools to Teammates: (Dis)Trust in AI for Cybersecurity with Neele Roch
When we collaborate with people, we build trust over time. In many ways, this relationship building is similar to how we work with tools that leverage AI. As usable security and privacy researcher…
Introducing Human-Centered Security: The Book
In this episode, Heidi gets a taste of her own medicine and is interviewed by co-host John Robertson about her newly-released book Human-Centered Security: How to Design Systems That Are Both Safe…
Threat Actors Leverage Behavioral Science; Security Teams Should, Too with Matt Wallaert
The cybersecurity industry often fixates on “behavior change,” expecting users to take on unrealistic tasks instead of designing safer, smarter systems. Matt Wallaert (founder of BeSci.io and author…
Tech & Law: The Power of Understanding Both With Justine Phillips
“Technical people need to better understand the laws and regulations and lawyers need to better understand the technology and processes in place. When that happens, when those worlds come together,…
Complexity Undermines Security With Bill Bonney, Gary Hayslip, and Matt Stamper
What do CISOs have to say about the security tools their teams use?:“When we introduce a level of complexity in the system, it undermines security. Every moment wasted trying to use a tool…
Security Tools Don’t Get a Free Pass When It Comes to Human-Centered Design with Jaron Mink
In this episode, we talk about: Security tools don’t get a free pass when it comes to involving end users as part of the design process. People studying and building ML-based security tools make a…
Leverage UX Research to Improve the Security User Experience with Serge Egelman
In this episode, we talk about:The role misaligned incentives play in security behaviors.How Serge and his team approach security-focused UX research. Looking upstream at the security decisions made…
Help Security Analysts Tell the Story Behind the Threats with Shante Perrin
Shante Perrin, a cybersecurity leader, and her team use cybersecurity software to not only to detect and respond to cybersecurity threats but also, as Shante describes, to help paint a picture for…
Putting Human-Centered Security Into Practice with Julie Haney
In this episode, we talk about: The need for human-centered security—in order for security measures to be effective, they must center around people, making usability as crucial as technology. We…
So Much Data, So Little Time—Designing for Security Workflows with Tom Harrison
Security analysts respond to security detections and alerts. As part of this, they have to sift through a mountain of data and they have to do it fast. Not in hours, not in days. In minutes.Tom…
Threat Modeling Parts of the User Journey That Cost Your Business Money With Adam Shostack
“Even though usability and security tradeoffs will always be with us, we can get much smarter. Some of the techniques are really simple. For one, write everything down a user needs to do in order to…
No Room for Hype When Integrating AI Into Cybersecurity Products with John Robertson and Siddharth Hirwani
“UX design can enhance the overall performance, adoption, and impact in cybersecurity tools that leverage AI, making the tools more accessible to a broader range of users, including those who don’t…
What Do You Know About Alert Fatigue? An Interview with John Robertson
“People try to talk about the technical user experience at too high of a level. You talk about alert fatigue and you kind of understand what alert fatigue is just by the name. Yeah, there’s a lot of…
Frequently Asked Questions
Human-Centered Security has published 59 episodes since December 2020, covering topics in Business, Technology.
Human-Centered Security is currently sporadic with new episodes monthly. Average episode length is 39m.
