You CAN Stop Stupid: Stopping Losses From Accidental and Malicious Actions

  • 14h 44m 13s
  • Dr. Tracy Celaya Brown, Ira Winkler
  • Gildan Media
  • 2021

Around the world, users cost organizations billions of dollars due to simple errors and malicious actions. They believe that there is some deficiency in the users. In response, organizations believe that they have to improve their awareness efforts and make more secure users. This is like saying that coal mines should get healthier canaries. The reality is that it takes a multilayered approach that acknowledges that users will inevitably make mistakes or have malicious intent, and the failure is in not planning for that. It takes a holistic approach to assessing risk combined with technical defenses and countermeasures layered with a security culture and continuous improvement. Only with this kind of defense in depth can organizations hope to prevent the worst of the cybersecurity breaches and other user-initiated losses.

Using lessons from tested and proven disciplines like military kill-chain analysis, counterterrorism analysis, industrial safety programs, and more, Ira Winkler and Dr. Tracy Celaya's You CAN Stop Stupid provides a methodology to analyze potential losses and determine appropriate countermeasures to implement.

Business technology and security professionals will benefit from the information provided by these two well-known and influential cybersecurity speakers and experts.

In this Audiobook

  • Chapter 1 - Failure: The Most Common Option
  • Chapter 2 - Users are Part of the System
  • Chapter 3 - What is User-Initiated Loss?
  • Chapter 4 - Risk Management
  • Chapter 5 - The Problems with Awareness Efforts
  • Chapter 6 - Protection, Detection, and Reaction
  • Chapter 7 - Lessons from Safety Science
  • Chapter 8 - Applied Behavioral Science
  • Chapter 9 - Security Culture and Behavior
  • Chapter 10 - User Metrics
  • Chapter 11 - The Kill Chain
  • Chapter 12 - Total Quality Management Revisited
  • Chapter 13 - Governance
  • Chapter 14 - Technical Countermeasures
  • Chapter 15 - Creating Effective Awareness Programs
  • Chapter 16 - Start with Boom
  • Chapter 17 - Right of Boom
  • Chapter 18 - Preventing Boom
  • Chapter 19 - Determining the Most Effective Countermeasures
  • Chapter 20 - Implementation Considerations
  • Chapter 21 - If You Have Stupid Users, You Have a Stupid System