Elevate Your Security Awareness Program: Harnessing the Power of Mindfulness
Summary
TLDRThe speaker recounts her personal ordeal with identity theft linked to China, which led to a six-year struggle to prove her authenticity and severely impacted her life. This experience catalyzed a career shift to cybersecurity. She emphasizes the importance of mindfulness in enhancing security awareness, as distractions and stress can impair decision-making. The talk introduces the concept of 'cyber mindfulness' and its benefits, such as improved decision-making, information retention, stress reduction, and personal accountability. The speaker outlines three principles to integrate cyber mindfulness: being intentionally cyber, empowering through relatable content, and being a role model. She encourages the audience to adopt these practices to combat cyber threats more effectively.
Takeaways
- 🌐 The speaker's personal experience with identity theft and its impact on her life led to a career shift into cybersecurity.
- 🛫 The incident began during a trip back to South America when the speaker was unexpectedly removed from a plane due to someone in China using her information for illegal activities.
- 📚 A six-year struggle ensued, filled with denials and efforts to prove her identity, which took a toll on her personal and professional life.
- 💡 The speaker found a new perspective and pivoted her career to cybersecurity, highlighting the importance of mindfulness in this field.
- 🧘 Mindfulness is presented as a powerful tool for enhancing security awareness, personal well-being, and decision-making in cybersecurity.
- 🤔 The speaker dispels common myths about mindfulness, emphasizing it's not about becoming a Zen monk or performing complex yoga poses.
- 🔄 The 'Box breathing' technique is introduced as a centering exercise practiced by Navy Seals and elite athletes to perform at their best.
- 🚫 Mindfulness can help prevent cyber attacks by promoting a state of 'cyber mindfulness' where individuals are less likely to fall for phishing scams.
- 🔑 The benefits of cyber mindfulness include improved decision-making, better retention of information, reduced stress, and increased personal accountability.
- 📈 Three principles for integrating cyber mindfulness are presented: be intentionally cyber, be empowering, and be a role model.
- 📱 An interactive exercise is suggested where participants express gratitude towards their phones, promoting a mindful connection with technology.
Q & A
What significant event occurred during the speaker's flight to Miami in 2005?
-The speaker was unexpectedly removed from the plane by Homeland Security officers and taken to a room where they were detained for 10 hours due to a criminal in China using their information for illegal activities.
Why did the speaker's passport have a big red 'ST' stamp on it?
-The 'ST' stamp indicated that the speaker was not allowed to stay in the US, which was a consequence of the confusion with their identity being used by a criminal in China.
What impact did this experience have on the speaker's life for the next six years?
-The speaker had to repeatedly prove their identity and fight against denials for a new visa, which nearly ruined their marriage, career, and took a severe toll on their mental health and well-being.
How did the speaker's career change as a result of these experiences?
-The speaker transitioned from their previous career to working in cybersecurity, inspired by their personal experience with identity theft and the need for security awareness.
What is the main focus of the speaker's presentation on cybersecurity?
-The speaker focuses on the concept of 'cyber mindfulness' and how it can be used to improve security awareness programs and decision-making in cybersecurity.
What is the purpose of the 'Box breathing' exercise introduced by the speaker?
-The 'Box breathing' exercise is a centering technique used to help individuals achieve a state of calm and focus, which can improve their performance and decision-making in various aspects of life, including cybersecurity.
What does the speaker suggest as the opposite of mindfulness?
-The speaker refers to being on 'autopilot' or 'full mindness' as the opposite of mindfulness, where one is distracted, stressed, and not fully present in the moment.
Why is mindfulness particularly important in the context of cybersecurity?
-Mindfulness is crucial in cybersecurity because it can help individuals make better decisions, notice red flags, and avoid falling for phishing scams, which are often the result of stress, distraction, and fatigue.
What are the three principles the speaker suggests for integrating cyber mindfulness?
-The three principles are: 1) Be intentionally cyber, by being purposeful and clear in cybersecurity awareness programs; 2) Be empowering, by making content relatable and engaging; and 3) Be a role model, by practicing what you preach and leading by example.
How can the speaker's personal story relate to the importance of cyber mindfulness?
-The speaker's personal story of identity theft and the challenges they faced highlights the importance of being vigilant and present, which is the essence of cyber mindfulness. It underscores the need for individuals to be aware and mindful in their online activities to prevent such incidents.
What is the speaker's final call to action for the audience?
-The speaker encourages the audience to incorporate cyber mindfulness into their programs, organizations, and personal lives, emphasizing the importance of being purposeful, empowering, and role models to combat the rise of cybercrime.
Outlines
😔 Disrupted Journey and Identity Theft Revelation
The speaker recounts their personal experience of being relocated from Venezuela to the American Midwest in 2005. After surviving their first winter, they embarked on a trip back to South America to visit family. Upon returning to the U.S. via Miami, they were unexpectedly detained by Homeland Security due to someone using their information for illegal activities in China. This led to a six-year struggle to prove their identity and regain their life in the U.S., which took a toll on their personal and professional life. The experience prompted a career switch to cybersecurity and the speaker's intention to share how mindfulness can elevate security awareness programs.
🧘♂️ The Impact of Mindfulness on Cybersecurity Decisions
The speaker discusses the findings from a report by Tessian and Stanford University, which show that distractions, stress, and fatigue can impair our cybersecurity decision-making. They emphasize the importance of mindfulness as a countermeasure against these factors, explaining that being in a state of 'full mindlessness' can lead to cybersecurity incidents. The speaker then introduces a centering exercise known as 'Box breathing' to demonstrate how mindfulness can be practiced and integrated into daily routines to enhance focus and awareness, which are critical for sound cybersecurity practices.
🛡️ Cyber Mindfulness: The Key to Secure Decision Making
The speaker explains the concept of cyber mindfulness as the practice of being purposefully intentional and fully aware in the present moment. They argue that mindfulness can be a differentiator in cybersecurity, helping individuals to make better decisions and avoid falling for scams. The speaker shares a story about Eric, a head of Finance who fell victim to a CEO spoofing email, highlighting how cyber mindfulness could have prevented a costly mistake. They outline the benefits of cyber mindfulness, including improved decision-making, information retention, stress reduction, and personal accountability.
🤔 Integrating Cyber Mindfulness into the Workforce
The speaker provides three principles for integrating cyber mindfulness into the workforce: being intentionally cyber, empowering, and being a role model. They stress the importance of clear and purposeful messaging in cybersecurity awareness programs and suggest incorporating cybersecurity reminders into daily routines, similar to safety calls in manufacturing. The speaker also emphasizes the power of relatable and personal content in engaging users and making cybersecurity more understandable and memorable.
📱 Embracing Technology with Cyber Mindfulness
The speaker encourages the audience to embrace technology with a mindset of cyber mindfulness. They conduct an exercise where participants are asked to express gratitude towards their phones and recognize the positive aspects of technology in their lives. The speaker suggests that by doing so, individuals can use technology as a tool for positive self-reflection and community engagement, fostering a more secure and mindful approach to cybersecurity.
🚀 Advancing Cybersecurity through Mindfulness and Empowerment
The speaker addresses potential objections to practicing cyber mindfulness, such as lack of time or understanding, and counters them by highlighting the benefits and the growing trend of human-centric cybersecurity. They emphasize that cybercrime is on the rise and that traditional methods may not be enough to combat it. The speaker calls for action, urging the audience to become purposeful, empowering, and role models in their approach to cybersecurity, to protect what matters most.
🙌 Gratitude and the Power of Cyber Mindfulness
In conclusion, the speaker expresses gratitude to all involved in the event and acknowledges the importance of the work being done in cybersecurity. They reiterate the three principles of cyber mindfulness and encourage the audience to take a mindful step towards a more secure and harmonious environment. The speaker's message is one of unity and proactive defense in the face of ever-evolving cyber threats.
Mindmap
Keywords
💡Mindfulness
💡Cybersecurity
💡Autopilot
💡Phishing
💡Stress and Fatigue
💡Cybersecurity Awareness
💡Personal Accountability
💡Cyber Mindfulness
💡Role Model
💡Empowerment
Highlights
In 2005, the speaker's family was relocated from Venezuela to the American Midwest.
After surviving their first winter, the speaker planned a trip back to South America.
Upon returning to the U.S. via Miami, the speaker was unexpectedly removed from their flight by Homeland Security.
The speaker was detained due to a criminal in China using their information for illegal activities.
The speaker faced a six-year struggle to prove their identity and secure a new visa.
The ordeal nearly ruined the speaker's marriage, career, and mental health.
The experience led the speaker to switch careers to cyber security.
The speaker emphasizes the importance of mindfulness in enhancing security awareness.
Mindfulness is contrasted with 'full mindness', a state of constant distraction.
Tessian and Stanford University report links distractions, stress, and fatigue to poor cyber security decision-making.
The speaker introduces the Box breathing technique as a centering exercise.
Mindfulness is defined as purposefully being intentional and fully aware in the present moment.
Cyber mindfulness can differentiate between clicking blindly or wisely, preventing cyber attacks.
The speaker shares a story of Eric, a head of Finance, who fell for a CEO spoofing email due to not being cyber mindful.
Cyber mindfulness benefits include improved decision-making, information retention, stress reduction, and personal accountability.
Three principles for integrating cyber mindfulness are presented: be intentionally cyber, be empowering, and be a role model.
The speaker suggests incorporating cyber mindfulness into security training and everyday life to combat cyber threats.
Transcripts
it's the summer of
2005 and my job relocate my family and I
from Venezuela to the American Midwest
so after I survived my first winter it
was time to visit my mom back in South
America the trip is everything I hope
for
it's time to return to the state so I'm
in a plane landing in Miami when the
captain announces homeland security
officers are boarding the plane I didn't
think of anything I handed my passport
and wor Visa all of the sudden and the
only passenger being marched off the
plane and scored into the room the room
the room is Jam pack and call silent no
phone calls I don't know what's
happening my husband is waiting for me
in Chicago and I'm about to miss my
connecting
fly where's my
luggage I what if I'm deported I don't
want to return to Venezuela I feel safe
here I love my American
Life 10 hours later later I'm handing my
passport with a big red St
Revol because we cannot stay in the US
my husband and I return to Venezuela and
with the support of my former employed
attorneys I'm trying to get a new Visa
so we land in karacas we go to the US
Embassy for the interview The Diplomatic
Security Officer keeps asking have you
lost your passport why why were you in
China who do you know in China who's
your
contact I never been to China I don't
have any contacts why the
questions why was I taking off that
plane he finally reveals what happened
and tells me that a criminal in China is
using my information to smuggle women
into the United
States and just like that deny Begins
for the next six years of my life I have
to prove that I'm the real me over and
over and over nearly ruining my marriage
my career and it takes a severe toll on
my mental health and
well-being however it also gave me a new
found
perspective then I switch my career from
it to cyber security
and let me ask you a question have you
ever had an experience that shifted your
career a
relationship your family your health
your life I I would like who can relate
to that and for those of you that are
virtually joining us I would like to see
some comments in this last Channel if
you relate type I which means I relate
so who can relate to that who relates
because we all have a story yes
absolutely we all have story and we
relate to them so today I'm super
grateful to be here and share with you
how to elevate our security awareness
programs harnessing the power of
mindfulness my intention my intention is
to share with you what mindfulness has
done for me and how is shifted my life
and my life in cyber security but also
my life personally and in my business so
you could apply this session to your
Workforce you can apply it to your cyber
security teams or you can apply this to
your own personal
life now before I start talking about
mindfulness I have a
confession you know when she was talking
about
autopilot I was living on
autopilot that was me with a million
tabs open in my browser I was like that
always thinking about the past the
future I was like worry about my my
husband my family my health my career
budget cut oh my goodness regrets about
the past worries about the future who
can relate to that right exactly and in
the chat please if you relate I
are and why is that you know know why is
that
important well here's the
thing tessian and Stanford
University experts reveal in a report
that
distractions stress and fatigue
influence our ability to make sound
cyber security decision and we're all
familiar with the DVI report and today
we have been hearing about all the Human
Side and all the things that happen
amazing presentations where we saw how a
fishing can happen just by that click
now when we are in that state when we
are in that distructive autopilot which
by the way I call it full mindness which
is the opposite of
mindfulness right so when we are in full
mindness if your users are in that state
that's a perfect recipe for the next
headline Cyber attack on that company
so I love well-being practices and I
love doing meditation doing yoga and
doing many things so in the context of
this session I want to share with you
some misconceptions about what
mindfulness is and yes that's me
um share
a beautiful moment in anyone from
California so that picture yes
absolutely love it um so
whoops oops sorry what happened
ah okay let's some talk about some myths
about mindfulness mindfulness is not
about you becoming the
next Zen monk it's not about you doing a
contortionist yoga pose that you can
untangle or it's not about you chanting
um until you connect to the wifi
frequency that's not about what
mindfulness is
now before I continue my conversation
about mindfulness why don't we do an
experience are you up for an
experience yes okay so this is a being
Cent C
experience and do you know that Navy
Seals Elite athletes and a lot of people
do centering exercises every single time
they are actually they do it every day
they're gonna be on into something on a
mission on on on on their day why is
that because that is how you can perform
a different level but there are many
different techniques about being
centered one that we will use today it's
called The Box breathing technique
anyone do the Box breeding oh my
goodness yes and how about in the chat
did you do the Box breeding it's super
simple a lot of research about box
breeding and it's basically a box right
we are going to do this together so
you're just going to
inhale for a count of four and don't
worry about I'll do the count inhale
through your nose then we're going to
hold the breath
right and you are going to Exhale the
way that you're gonna do that is through
your mouth imagine that that you're
blowing candles like you don't want to
speed on the cake with the candles
so right and then you're GNA hold your
breath for four seconds are you ready
and those of you in the chat do it
together okay so one two three four
let's inhale one two three 4 hold your
breath four three two one blow the
candles one two three four hold your
breath Four 3 2 one let's do it again
inhale deeply through your
nose hold hold the
breath exhale 4 3 2 1 hold the breath
one two three
four why we did that exercise is that is
what it feels to be
Center when you are not feeling that
when you are not in that
state ask yourself am I full miness
right now and mind that
state and if that's the cas choose to
Center to be Center
again because what is mindfulness
mindfulness is actually the practice of
purposefully being intentional bringing
the full awareness to your present
moment to right now where you
are and when we do
that amazing things happen because
mindfulness is so much more than just a
pragmatic practice is actually a
differentiator I believe is an enabler
for industry 5.0 because you think about
we today we have talked so much about
the human Centric and how important we
are in the industry and for for uh
industry fine point0 definitely is that
connection that needs to happen in the
production
process so mindfulness can be the
difference in your cyber security
program and why is that because it could
be the difference between clicking
blindly or clicking
wisely because at the end of the day we
are what we click we saw the example
this morning when The Kino was talking
about how an attack happened it needed
to be someone to click on that link
otherwise it wouldn't happen wasn't that
amazing right now let me share with you
a true
story it's a Tuesday Morning on a
deadline day and Eric is a new appointed
head of Finance Eric FS prey for a
classic CEO spoofing
email just one click he said a chain of
events that Eric will do anything to
undo if he could Eric asked himself why
did I click on that link I mean I know
this I just finished the cyber security
training I even passed the test
why did I click what did I miss Eric was
in full
miness Eric missed the red
flags he would just have a cyber mindful
moment to pause and realize what was
happening he would have saved that
company a million dollars and a
lot
trouble now you and I know that hackers
scammers and cyber monsters count they
are counting on
crushing people cyber mindfulness and
how they do
that sense of urgency they send emails
they evoke the senses right they want
our users to open the
door and that's where cyber mindfulness
can make the difference between
a breach or a close
call now what are the benefits of cyber
mindfulness number one it improves our
ability to make decisions when we are
present we can notice efficient link we
can notice oh my God I don't know that
person that's not right i'm present that
means I can make better decision making
number two it helps retain information
and what does that mean for us
well your cyber security policies your
processes your training they can
remember that throughout the day and
they can apply
it cyber mindfulness also reduces stress
and frustration It is Well documented
how how
mindfulness helps with
burnout especially burn out in our cyber
security teams that get so
many um how do you call that so many
attempts and they false positive and
they that over and over that frustration
that stress can be helped with
mindfulness and lastly it cultivates
personal accountability what does that
mean it means that your users can own
their mistakes and Report faster when
they see something wrong and we've seen
it in the presentations over and over
today how wonderful is to
have a user community that has our back
because
obviously we can multiply the efforts
that we in cyber security
do now I know you're all wondering okay
Sandra great how do we do
this are you asking
yes okay fantastic there are three
principles that you can
follow to integrate cyber mindfulness
and you can integrate this in your
Workforce you can do it in your cyber
security teams or can do it you can do
it in your in your own personal
life number one be intentionally
cyber we saw the definition of
mindfulness which is to be
purposeful so you intentional you need
to be purposeful with your cyber
security awareness programs you need to
articulate what is that about in a in a
way that not only you understand it your
team understand it but your users
understand it that they can throughout
the day display the behaviors that you
that are aligned with that
intentionality on the program what does
that mean like we saw this morning a
presentation about how important is our
messaging how important it is for us to
be clear concise
precise right because that's how
intentionally they can remember and
apply it during the day now let me just
give you an example here that you can
incorporate you know in as is anyone
here in
manufacturing manufacturing company or
working in the uh in the shop floor you
know there
are there is a a
a protocol that every single time that
you have a meeting you have to do a
safety call right exactly yes why is
that because you know it's it's part of
the safety it's ingrain it's second
nature so why don't do that why don't we
have cyber security mindful intention in
every meeting that we have 10 seconds
with that to set that
intention I mean there are so many
different ways where we can be
intentionally cyber
and at the end of the presentation you
can have a template that we use it's a
questionnaire that you can use and you
can apply it to your teams or or to
yourself and it's a very helpful tool
now let's move to principle number two
which is be
empowering
I in you know I was so excited today
with every presentation where that was
the messaging if you if you remember
every single presentation today it's
about how you can make people feel
something engage them make him feel how
good your program is so they cannot wait
to get home to share with their friends
with their communities so you create
content that they
love you create content and no matter
where you are with if you have a very
mature program or if you're just
starting out make it simple make it
relatable make it personal because we
relate to stories we relate
to simple
messaging now an example here it's a
global organization doing this year in
their cyber security awareness month
they are doing an experience for their
users that experience is all about
feelings it's all about wellbeing it's
all about
making like the connection with cyber
security in a in a different way way
they they call it Z cyber Zen and I got
to tell you it's amazing amazing what
they are doing another example is a
nonprofit organization that had nothing
to do with cyber security and what they
decided to do was train their people in
cyber mindfulness so they can serve
their communities better they can serve
them they can they can give them in a
easy and simple
way
tips about cyber security so they can
protect what matters
most which is now our last
principle be a role
model we need to be role
models and what does that mean
Sandra it means
that whatever Behavior you're seeking
your users to have you show it first
whatever thing that you
want your family to do you show it
first teach them by
being not by
tell so what does that mean give me an
example when you have your security
training be the first one to complete
that
training be the first one who do the
software updates be the first one to
clean up your apps or remove what is
unnecessary in your clutter in your
environment keep it
clean people want to imitate what you do
not to do what you tell them to
do when you are that role
model everything can change being Center
practice that let people go to you and
ask you what's different with you what's
going on what are you eating I want
that
right
so doing just a a quick Rec well we're
not going to do a recap yet I have
another surprise for you now that we
know that what is mindfulness and what
is and how can you apply it are you
ready for another
experience yes I
I mean yes
fantastic okay in this
experience I want you to take your cell
phones everyone please have your phones
out and you in the chat take your you
know have your phone if you're connected
to the session using your phone you can
just you
know um have it but don't do well when
you have your phone out I want you to
open the the camera and I want you to
open video mode facing you so for those
of you connected
obviously you can record but you don't
have to record you cannot record it
because you'll be disconnected but you
can do the exercise so have your phones
facing
you okay now be intentional this is an
example where you can be intentional and
what you're going to do is for
30 seconds you're going to tell yourself
why is that phone important to you why
are you grateful why you appreciate it
because it allows you to connect to your
family it allows you to go places it
allows you to hear the voices of your
loved ones it allows you to work
remotely I mean there are so many things
I know this might not be but just trust
me and do it with me just have your
phones facing you and when I say go just
go and intentionally tell it like you
mean it one two three
go
five
seconds okay
stop
okay when you play the record
I want you to soak into those feelings
of
appreciation into those feelings of self
centering because you know that your
technology is ever present is never
distracted technology is always there
for you so you can use it to infuse
positive messages to
yourself to your communities to your
family now will everyone jump right into
cyber
mindfulness you will have retractors and
expanders
now regardless of if you are in the oh
my God this is so weird this is hard
people think I'm crazy I have no time
I'm busy I don't know how to do
it or if you
are finding expanders saying oh my God I
love this this is awesome I love
empowering others empowering is amazing
mindfulness is a key
differentiator companies and governments
are already in I invite you to Google
cyber mindful or cyber mindfulness check
it out there is a human Centric
Trend right now now
doesn't matter where where we are in
this where because there is one thing
that is
undeniable one
thing and that is cyber crime is on the
rise no matter what we know that that
cyber
monsters how I call them and social
Engineers are
looking every single day to pray on our
users emotions on our people emotions so
why don't we give them an
option where they can Center themselves
where they can find a different
way to see cyber security because this
could be the difference
between clicking blindly or cyber
mindfully click
wisely now let's just do a a quick
recap we saw the three
principles for cyber mindfulness number
one be intentionally cyber be purposeful
in your
messaging when you create content be in
alignment with that
intentionality have your
content
a Content that evokes an emotion like in
the same way the Cyber monsters evoke
emotions why don't we make our content
evoke a positive emotion that contres
that number two be
empowering make easy relatable and
personal in
trainings have something that people get
no way to go home and share it oh my God
I can share it with my friends I can
share it with my family I can share it
with my
neighbor make
it empowering inspiring because when
people can teach somebody else coach
somebody else there is there is
something that brings
life into that person because now that
person feels I am important I know how
to do this I am confident I'm helping
someone maybe not to click in that link
so be empowering and lastly be a role
model be the first at work at home and
practice centering over and over be
cyber mindful until you become
one how ready are
you
to incorporate cyber mindfulness into
your programs because you you are the
decision
makers you are the ones that can make a
choice whether for your own
programs whether it's for your
organization or whether it's in your
personal
life how ready are you to let your teams
to be purposeful
empowering and role models
so that we have a chance against hackers
scammers and cyber monsters and protect
what matters most whatever that is
because this isn't just about protecting
digital assets so much more than that
it's being in a community is being in a
center presentent harmonious environment
that is what this is about
now I'm super super grateful
to Sans San Institute to Lans to The
Advisory boards to every single speaker
today that gave us amazing
information to each of you sitting in
these
chairs that do an amazing job every
single day to all of you that are
watching in us on this SL channel to
everyone that is going to see this
recording over and over thank you thank
you for all you do because what you do
makes a
difference and we we can take one thyber
mindful step at a
time thank
you
関連動画をさらに表示
Generation Stress: From Surviving to Thriving | Kristen Race | TEDxMileHigh
Hack your own brain | Karolien Notebaert | TEDxUHasselt
Social-Emotional Learning: Lesson on Mindfulness
Privacy and Security: Impact of Digital Technology
Win the Game of Life with Sport Psychology | Jonathan Fader | TEDxRutgers
Sukses dengan detox dopamin.. cara ampuh!
5.0 / 5 (0 votes)