HRM On Demand LANDSCAPE

Explore HRMCon

On-Demand

Dive into the insights and discussions from HRMCon. Watch the recorded sessions at your convenience.

 

Each year, HRMCon brings together cybersecurity thought leaders and practitioners to present a half-day virtual conference geared toward continuously evolving the power of behavior change in mitigating risks.

Turning Security Into a Shared Outcome

Security is often called “everyone’s responsibility,” but it rarely factors into how performance is measured or managed.

In this session, experts from Living Security will explore how human risk scorecards—for both individuals and managers—bring security into everyday performance conversations.

You’ll learn how to:

  • Bridge the gap between culture and accountability
  • Transform security from a side project into a measurable business outcome
  • Advance your HRM program's maturity with progress in the Culture and Workforce Engagement category

A Sneak Peek into Living Security's Scorecards:

ManagerScorecardsDemo-ezgif.com-video-to-gif-converter

 

 

Breakout Tracks

Human Risk

Quantification

Risk-Based

Policy & Training Interventions

Workforce Education

and Enablement

Positive

Security Culture

Quantifying Behaviors to Mitigate Human Risk in HRM

Chris Poirel, Living Security

 Targeting Awareness of Cyber Threats with Risk-Based Policies & Training Interventions

David Tunley, Rivian

Hook, Line, and Sinker

Aaron Strong, Syniverse

Building a Robust Security Culture

Terry Smith, Blackbaud
Play Button Chris
 Play Button David T
 Play Button Aaron
 Play Button Terry

Human Risk Management 2.0

Jon Brickey, Mastercard

 Empowring Your Human Firewall: Orchestration for Cyber Resilience and Training

Sandy Evans, Living Security

How to Deepen Your Career in Security Awareness

Cassie Clark, Consultant

HRM's Role Cultivating a Positive Security Culture for your Organization

Shawnee Delaney, Vaillance Group
Play Button Jon
 Play Button Sandy
 Play Button Cassie
 Play Button Shawnee

The State of Human Risk Quantification

Maria Long, Violet Sullivan & Julian Sylvestro

MindSecure: Elevating Cyber Resilience through Cyberpsychology and Organization Synergy

Allen Ohanian, LA County

Own Your Security Journey: Empower All Levels to Track Human Risk & Drive Continuous Improvement

Erik Book, Living Security

Borrowing Brilliance: What Security Awareness and Training Should Steal from Marketing

Mike Taylor, Nationwide
Play Button Panel
 Play Button Allen
 Play Button Erik
 Play Button Mike

Connecting Emerging Threat Intel to Human Risk Quantification

Josh Bartolomie, Cofense

Evolving from Annual Security Compliance Training to Risk-Based Policy and Training

Michele Kim, Fitch Ratings

Using Human Risk Management to Drive Behavioral Change

Brandy Harris, CyberEd

Scorecards & Vigilance: Unleashing the Power of Your Workforce for a More Secure Future

Nick Marchiselli, Living Security
Play Button Josh

 

 Play Button Michele

 

 Play Button Brandy

 

 Play Button Nick

 

 

HRM Readiness Landing Page-1
copy copy copy 

copy copy copy 

TITLE

TITLE

copy copy copy 

TITLE

copy copy copy 

TITLE

copy copy copy 

 

Breakout Tracks

Human Risk

Quantification

Risk-Based

Policy & Training Interventions

Workforce Education

and Enablement

Positive

Security Culture

Quantifying Behaviors to Mitigate Human Risk in HRM

Chris Poirel, Living Security

 Targeting Awareness of Cyber Threats with Risk-Based Policies & Training Interventions

David Tunley, Rivian

Hook, Line, and Sinker

Aaron Strong, Syniverse

Building a Robust Security Culture

Terry Smith, Blackbaud

 

Human Risk Management 2.0

Jon Brickey, Mastercard

 Empowring Your Human Firewall: Orchestration for Cyber Resilience and Training

Sandy Evancs, Living Security

How to Deepen Your Career in Security Awareness

Cassie Clark, Consultant

HRM's Role Cultivating a Positive Security Culture for your Organization

Shawnee Delaney, Vaillance Group

 

The State of Human Risk Quantification

Maria Long, Violet Sullivan & Julian Sylvestro

MindSecure: Elevating Cyber Resilience through Cyberpsychology and Organization Synergy

Allen Ohanian, LA County

Own Your Security Journey: Empower All Levels to Track Human Risk & Drive Continuous Improvement

Erik Book, Living Security

Borrowing Brilliance: What Security Awareness and Training Should Steal from Marketing

Mike Taylor, Nationwide

Connecting Emerging Threat Intel to Human Risk Quantification

Josh Bartolomie, Cofense

Evolving from Annual Security Compliance Training to Risk-Based Policy and Training

Michele Kim, Fitch Ratings

Using Human Risk Management to Drive Behavioral Change

Brandy Harris, CyberEd

Scorecards & Vigilance: Unleashing the Power of Your Workforce for a More Secure Future

Nick Marchiselli, Living Security

 

Conference Tracks

Choose from four exciting conference tracks. 

1. Human Risk Quantification

Detect and measure human security behaviors by identifying vigilant and vulnerable members of your workforce. Use data from your existing identity and security tools to quantify human risk across the full spectrum of security risks including account compromise, data loss, malware, phishing, social engineering, and training compliance.

2. Risk-Based Policy & Training Interventions

Initiate policy and training interventions based upon human risk. Interventions should be based on best practices and provide next steps that can be taken in real-time to address risk such as nudges, reminders, microlearning modules, and policy changes (such as updating passwords).

3. Workforce Education and Enablement

Educate and enable the workforce to protect against cybersecurity risks. Empower individual employees, managers, and executives to measure progress and track vigilance across teams and departments.

4. Positive Security Culture

Build a positive security culture by empowering your workforce to actively participate in security vigilance, eliminate needless compliance activity, and incorporate intelligent capabilities that simplify security compliance.
# mobile

Jessica Burn

Forrester | Principal Analyst

The Future Is Now: Introducing Human Risk Management.  

Our efforts in understanding and managing the significant matter of human element breaches remain perfunctory, with one touted silver bullet: security awareness and training (SA&T). This is a market that has grown exponentially and yet, with all this training and quizzing, human-related breaches continue to increase year over year. Join us for this session to examine the major expected changes in SA&T as the industry transitions to an approach that centers on behavior: human risk management.  This new approach prioritizes positively influencing behavior and instilling a security culture within organizations. The session will provide attendees with Forrester’s definition of human risk management and answer questions like:

  • What are the drivers and challenges of security awareness and training?
  • How is the human risk management market maturing?
  • What are the challenges, opportunities, and practicalities of moving from SA&T to human risk management?
Jess-Burn-1

About Jess

Jess is a principal analyst at Forrester serving security and risk (S&R) professionals. She contributes to Forrester’s research on the role of the CISO with a focus on security talent management. Additionally, Jess covers incident response and crisis management, and email security.

Previous Work Experience

Prior to her analyst role, Jess spent eight years as a principal advisor on Forrester’s Security & Risk Council. In this role, she was a trusted partner to a network of CISOs and S&R leaders, making and communicating critical decisions about and investments in their programs. Before she was an advisor, Jess led a Forrester Consulting practice focused on helping tech and service providers with their business and go-to-market strategies.

Education

Jess holds a Bachelor of Arts in communications, with concentrations in English and marketing, from the University of Connecticut.
WSJ Article: Why “Security Training Doesn’t Work” Misses the Point

Living Security Blog

WSJ Article: Why “Security Training Doesn’t Work” Misses the Point

Wall Street Journal says phishing training doesn’t work. We explain why it is just the first step — and how Human Risk Management cuts risky users by half.

Manager Scorecards: The Key to HRM and Security Culture

Living Security Blog

Manager Scorecards: The Key to HRM and Security Culture
Planning for a Future with Autonomous Co-Workers

Living Security Blog

Planning for a Future with Autonomous Co-Workers
How HRM Cut Risky Users by 50% in 2025 | Living Security

Living Security Blog

How HRM Cut Risky Users by 50% in 2025 | Living Security
testimonial bg testimonial mobile bg

The Future Is Now: Introducing Human Risk Management. This is not just a name change. It is a significant change of mindset, strategy, process, and technology about how we approach an old problem in a new world.

Jinan Budge

forrester-RGB-white_logo

 
Chris Poirel Sandy Evans Erik Book Nick Marchiselli
Play Button Chris Play Button Sandy Play Button Erik Play Button Nick
Data-Driven Decisions: Quantifying Behaviors to Mitigate Human Risk in HRM Empowering Your Human Firewall: Orchestration for Cyber Resilience & Training Own Your Security Journey: Empowering All Levels to Track Human Risk & Drive Continuous Improvement Scorecards & Vigilance: Unleashing the Power of Your Workforce for a More Secure Future

 

testimonial bg testimonial mobile bg

The Future Is Now: Introducing Human Risk Management. This is not just a name change. It is a significant change of mindset, strategy, process, and technology about how we approach an old problem in a new world

Jinan Budge

forrester-RGB-white_logo
senior-hispanic-woman-working-in-home-office-color drench

senior-hispanic-woman-working-in-home-office-color drench

 

More from Living Security

unify-go-img-1

Newest Human Risk Data

 

Just 10% of employees drive 73% of cyber risk. Read the Risky Business report

7-2

Human Risk Management Forrester Wave

 

Explore Forrester's first Human Risk Management report

Professional reviewing compliance software data while taking notes

Schedule a Demo

 

Learn how you can protect your organization with nudges, training, and policy updates