91³ÉÈ˰涶Òô
UNSW Canberra

Human-Centred Cyber SecurityÌý

See all courses
Personalise
UNSW graphic yellow

Enrol

Duration

3 days

Delivery mode

In-Person

Location

91³ÉÈ˰涶ÒôCity Campus

Standard price

$3,300.00

Accelerate your career, learn new skills, and expand your knowledge.

First in Australia for research excellence and impact.

Top 50 in the world. 2020 QS World University Rankings.

Overview

Expand your understanding of cyber security beyond the sphere of technology by addressing the role that human behaviour plays in securing and subverting systems.ÌýThe course takes a transdisciplinary approach, combining academic research from a range of disciplines (such as computer science, psychology, international relations and political science) with practitioner experience, to explore ways of creating solutions to complex cyber security problems.

You will explore the relationships between people and technology from the perspective of users, designers and developers of technology, as well as policy makers. The course culminates in an exploration—grounded in security theory—of what it means to be 'cyber secure' as an individual, as a society, and as a nation state.

At a practical level, you will learn how to evaluate tools to understand and shape cyber security behaviours. And you will develop expertise that enables you to critique cyber security strategies and policies, and generate productive security dialogues across communities.

Course content

This course is broken into the following core learning topics:

Day 1

  • Insider Threat:ÌýCategorise malicious and non-malicious insider threats, apply and critique rational choice theory, analyse motivations, and explore mitigation techniques.
  • Useable Security: Understand human problems with security tools, security design guidelines, and principles of usable security.

Day 2

  • Security Awareness: Understand end users’ perspectives and different approaches to security awareness.
  • Behaviour Change: Understand how to change security behaviours by using an established behaviour change model to develop and critique behaviour change interventions.

Day 3

  • Everyday Security: Understand and apply security theory to critically reflect on security for citizens.

Learning outcomes

On completion of this course you will be able to:

  • analyse theories that explain both malicious and non-malicious insider threat in an organisational contex
  • justify the value of usable security in mitigating cyber security risk in an organisational contex
  • critique the design of an online cyber security awareness programme
  • develop a plan for a behaviour change intervention to improve a given cyber security behaviour
  • critically reflect on security theory in the context of online government services.

Who should attend

Anyone working in or around cyber security who has input at the strategic or policy level in an organisation or in Government.Ìý

Elements of this course have been part of training programmes for UK Defence and Security technologists.

Prerequisites

There are no prerequisites for this course.Ìý

Ìý

Facilitator

Professor Debi Ashenden

Debi is Professor of Cyber Security and Director of the Institute for Cyber Security at UNSW.Ìý She previously held the DST Group-University of Adelaide Joint Chair in Cyber Security. In addition, she is a Visiting Professor at Royal Holloway, University of London in the UK. She has worked extensively across the public and private sector for organisations such as the MoD, Cabinet Office, 91³ÉÈ˰涶Òô Office, Euroclear, Barclaycard, Reuters and Close Bros. She is the co-author of 'Risk Management for Computer Security: Protecting Your Network & Information Assets.ÌýÌý

Dr Andrew Reeves

Andrew is Deputy Director of the Institute for Cyber Security at UNSW. He is a registered Organisational Psychologist and received his PhD from the University of Adelaide, where he maintains an affiliation as a Visiting Research Fellow. Andrew’s career spans consultancy, not-for-profit, academia, Defence Science and Technology, and board roles. He has developed guidance to disrupt attacker decision-making, enhance mental health in cybersecurity professionals, and create effective tools to evaluate and foster robust cybersecurity cultures within organisations.

Cancellation policy

Courses will be held subject to sufficient registrations. 91³ÉÈ˰涶Òôreserves the right to cancel a course up to five working days prior to commencement of the course. If a course is cancelled, you will have the opportunity to transfer your registration or be issued a full refund. If registrant cancels within 10 days of course commencement, a 50% registration fee will apply. 91³ÉÈ˰涶Òôis a registered ACT provider under ESOS Act 2000-CRICOS provider Code 00098G.