Register Now for HRMCon!

HRM On Demand LANDSCAPE

Explore HRMCon

On-Demand

Dive into the insights and discussions from HRMCon. Watch the recorded sessions at your convenience.

 

Each year, HRMCon brings together cybersecurity thought leaders and practitioners to present a half-day virtual conference geared toward continuously evolving the power of behavior change in mitigating risks.

 

Countdown to HRMCon

 

“[Human Risk Management Conference] is an invaluable oportuntiy to learn from peers, discover best practices, and gain insights that will shape the success of [your] security programs.” - Ashley Rose | CEO, Living Security
Q2 stadium banner

Keynote Speaker

Dive into insightful sessions presented by industry professionals, including a keynote presentation by Jinan Budge of Forrester.

HRMCon 2025 Headshots_Jinan Budge_4x5

Jinan Budge | Forrester

Jinan leads Forrester’s security and risk research in Asia Pacific. Jinan’s research focuses on enabling chief information security officers (CISOs) and technology executives to lead a high-performing security organization and culture. Jinan globally leads Forrester’s awareness, behavior, and culture coverage, using strategic and innovating thinking to shape the market. Jinan is also an advocate for diversity and inclusion in security. She focuses on ensuring that cybersecurity teams not only attract but also retain the best talent, and she brings a local and global perspective and cultural lens to her research and practice.

HRMCon 2024 Recap

Watch keynotes presentations and breakout sessions from HRMCon 2024
davidk__1__720 WATCH
JessB WATCH
AshleyBrian WATCH
ChrisP WATCH
JonB WATCH
TrioPanel WATCH
JoshB WATCH
DavidTun WATCH
SandyE WATCH
AllenO WATCH
MicheleK WATCH
AaronS WATCH
CassieC WATCH
ErikB WATCH
BrandyH WATCH
TerryS WATCH
ShawneeD WATCH
MikeT WATCH
NickM WATCH
davidk__1__720
Cybersecurity risk management expert David Kennedy, TrustedSec
JessB
Human risk management expert Jess Burn, Forrester
AshleyBrian
Cybersecurity risk management expert Brian Krebs, KrebsOnSecurity.com
ChrisP
Explore human risk management- Chris Poirel, Living Security
JonB
Explore cybersecurity risk management- Jon Brickey, Mastercard
TrioPanel
Explore human risk management- Maria Long, Violet Sullivan, and Julian Sylvestro
JoshB
Explore cybersecurity risk management- Josh Bartolomie, Cofense
DavidTun
Explore cybersecurity risk management- David Tunley, Rivian
SandyE
Explore human risk management- Sandy Evans, Living Security
AllenO
Explore cybersecurity risk management- Allen Ohanian, LA County DCFS
MicheleK
Explore human risk management- Michele Kim, Fitch Ratings
AaronS
Explore cybersecurity risk management- Aaron Strong, Syniverse
CassieC
Explore cybersecurity risk management- Cassie Clark, Security Awareness Consultant
ErikB
Explore human risk management- Erik Book, Living Security
BrandyH
Explore human risk management- Brandy Harris, CyberEd
TerryS
Explore cybersecurity risk management- Terry Smith, Blackbaud
ShawneeD
Explore human risk management- Shawnee Delaney, Vaillance Group
MikeT
Explore cybersecurity risk management- Mike Taylor, Nationwide
NickM
Explore human risk management- Nick Marchiselli, Living Security

 

Breakout Tracks

Human Risk

Quantification

Risk-Based

Policy & Training Interventions

Workforce Education

and Enablement

Positive

Security Culture

Quantifying Behaviors to Mitigate Human Risk in HRM

Chris Poirel, Living Security

 Targeting Awareness of Cyber Threats with Risk-Based Policies & Training Interventions

David Tunley, Rivian

Hook, Line, and Sinker

Aaron Strong, Syniverse

Building a Robust Security Culture

Terry Smith, Blackbaud
Play Button Chris
 Play Button David T
 Play Button Aaron
 Play Button Terry

Human Risk Management 2.0

Jon Brickey, Mastercard

 Empowring Your Human Firewall: Orchestration for Cyber Resilience and Training

Sandy Evans, Living Security

How to Deepen Your Career in Security Awareness

Cassie Clark, Consultant

HRM's Role Cultivating a Positive Security Culture for your Organization

Shawnee Delaney, Vaillance Group
Play Button Jon
 Play Button Sandy
 Play Button Cassie
 Play Button Shawnee

The State of Human Risk Quantification

Maria Long, Violet Sullivan & Julian Sylvestro

MindSecure: Elevating Cyber Resilience through Cyberpsychology and Organization Synergy

Allen Ohanian, LA County

Own Your Security Journey: Empower All Levels to Track Human Risk & Drive Continuous Improvement

Erik Book, Living Security

Borrowing Brilliance: What Security Awareness and Training Should Steal from Marketing

Mike Taylor, Nationwide
Play Button Panel
 Play Button Allen
 Play Button Erik
 Play Button Mike

Connecting Emerging Threat Intel to Human Risk Quantification

Josh Bartolomie, Cofense

Evolving from Annual Security Compliance Training to Risk-Based Policy and Training

Michele Kim, Fitch Ratings

Using Human Risk Management to Drive Behavioral Change

Brandy Harris, CyberEd

Scorecards & Vigilance: Unleashing the Power of Your Workforce for a More Secure Future

Nick Marchiselli, Living Security
Play Button Josh

 

 Play Button Michele

 

 Play Button Brandy

 

 Play Button Nick

 

 

HRM Readiness Landing Page-1
copy copy copy 

copy copy copy 

TITLE

TITLE

copy copy copy 

TITLE

copy copy copy 

TITLE

copy copy copy 

 

Breakout Tracks

Human Risk

Quantification

Risk-Based

Policy & Training Interventions

Workforce Education

and Enablement

Positive

Security Culture

Quantifying Behaviors to Mitigate Human Risk in HRM

Chris Poirel, Living Security

 Targeting Awareness of Cyber Threats with Risk-Based Policies & Training Interventions

David Tunley, Rivian

Hook, Line, and Sinker

Aaron Strong, Syniverse

Building a Robust Security Culture

Terry Smith, Blackbaud

 

Human Risk Management 2.0

Jon Brickey, Mastercard

 Empowring Your Human Firewall: Orchestration for Cyber Resilience and Training

Sandy Evancs, Living Security

How to Deepen Your Career in Security Awareness

Cassie Clark, Consultant

HRM's Role Cultivating a Positive Security Culture for your Organization

Shawnee Delaney, Vaillance Group

 

The State of Human Risk Quantification

Maria Long, Violet Sullivan & Julian Sylvestro

MindSecure: Elevating Cyber Resilience through Cyberpsychology and Organization Synergy

Allen Ohanian, LA County

Own Your Security Journey: Empower All Levels to Track Human Risk & Drive Continuous Improvement

Erik Book, Living Security

Borrowing Brilliance: What Security Awareness and Training Should Steal from Marketing

Mike Taylor, Nationwide

Connecting Emerging Threat Intel to Human Risk Quantification

Josh Bartolomie, Cofense

Evolving from Annual Security Compliance Training to Risk-Based Policy and Training

Michele Kim, Fitch Ratings

Using Human Risk Management to Drive Behavioral Change

Brandy Harris, CyberEd

Scorecards & Vigilance: Unleashing the Power of Your Workforce for a More Secure Future

Nick Marchiselli, Living Security

 

Conference Tracks

Choose from four exciting conference tracks. 

1. Human Risk Quantification

Detect and measure human security behaviors by identifying vigilant and vulnerable members of your workforce. Use data from your existing identity and security tools to quantify human risk across the full spectrum of security risks including account compromise, data loss, malware, phishing, social engineering, and training compliance.

2. Risk-Based Policy & Training Interventions

Initiate policy and training interventions based upon human risk. Interventions should be based on best practices and provide next steps that can be taken in real-time to address risk such as nudges, reminders, microlearning modules, and policy changes (such as updating passwords).

3. Workforce Education and Enablement

Educate and enable the workforce to protect against cybersecurity risks. Empower individual employees, managers, and executives to measure progress and track vigilance across teams and departments.

4. Positive Security Culture

Build a positive security culture by empowering your workforce to actively participate in security vigilance, eliminate needless compliance activity, and incorporate intelligent capabilities that simplify security compliance.
# mobile

Michele Kim

Fitch Ratings | Director, Technology Risk

Evolving from Annual Security Compliance Training to Risk-Based Policy and Training

Security awareness and training is rapidly evolving. It wasn’t too long ago that many organizations only engaged employees in improving security vigilance through annual security compliance training. During this session, hear Fitch Group's progressive journey from check-the-box annual compliance training to a robust Human Risk Management program and policies that utilizes management recognition for vigilance and targeted interventions for risky behaviors.

 
michelle_kim

About Michele

Michele is a highly experienced cybersecurity and risk management expert with over 15 years in the global financial services sector. Currently, Michele is the Head of Business Information Risk function within the Technology Risk team at Fitch Group, a global leader in credit ratings and research. In this role, she leads human-behavior risk management, business engagement and partnership, strategy and executive reporting, security communication and publication, and PMO.   Michele's diverse background in cybersecurity includes previous positions in vulnerability management, governance risk and compliance (GRC), and identity and access management (IAM). She has earned recognition in the Deutsche Bank GTO RARE (Recognizing and Rewarding Excellence) Award and inclusion in Fitch Group's TalentPath, a program designed for talent management. Michele also holds several industry certifications including CISM, GSEC, GSTRT, and the SANS Security Awareness Professional (SSAP).

Planning for a Future with Autonomous Co-Workers

Living Security Blog

Planning for a Future with Autonomous Co-Workers

Autonomous AI is here. Explore how Living Security is evolving HRM to secure a blended workforce of humans and AI agents—before risks scale out of control.

How HRM Cut Risky Users by 50% in 2025 | Living Security

Living Security Blog

How HRM Cut Risky Users by 50% in 2025 | Living Security
AI-Powered Phishing Simulations with Unify

Living Security Blog

AI-Powered Phishing Simulations with Unify
RSAC 2025 Recap: Human Risk Management Takes Center Stage

Living Security Blog

RSAC 2025 Recap: Human Risk Management Takes Center Stage
testimonial bg testimonial mobile bg

The Future Is Now: Introducing Human Risk Management. This is not just a name change. It is a significant change of mindset, strategy, process, and technology about how we approach an old problem in a new world.

Jinan Budge

forrester-RGB-white_logo

 
Chris Poirel Sandy Evans Erik Book Nick Marchiselli
Play Button Chris Play Button Sandy Play Button Erik Play Button Nick
Data-Driven Decisions: Quantifying Behaviors to Mitigate Human Risk in HRM Empowering Your Human Firewall: Orchestration for Cyber Resilience & Training Own Your Security Journey: Empowering All Levels to Track Human Risk & Drive Continuous Improvement Scorecards & Vigilance: Unleashing the Power of Your Workforce for a More Secure Future

 

testimonial bg testimonial mobile bg

The Future Is Now: Introducing Human Risk Management. This is not just a name change. It is a significant change of mindset, strategy, process, and technology about how we approach an old problem in a new world

Jinan Budge

forrester-RGB-white_logo
senior-hispanic-woman-working-in-home-office-color drench

senior-hispanic-woman-working-in-home-office-color drench

 

More from Living Security

unify-go-img-1

Newest Human Risk Data

 

Just 10% of employees drive 73% of cyber risk. Read the Risky Business report

7-2

Human Risk Management Forrester Wave

 

Explore Forrester's first Human Risk Management report

Professional reviewing compliance software data while taking notes

Schedule a Demo

 

Learn how you can protect your organization with nudges, training, and policy updates