This course aims to teach learners how to use social engineering techniques to improve organizational security acceptance. The learning outcomes include understanding the challenges faced by network defenders, learning how to bridge the gap between users and the information security team, and improving security awareness and policy adherence. The course covers skills such as social engineering tactics, blending in with the target, and effective communication strategies. The teaching method involves a presentation discussing real-life case studies and practical advice. The intended audience for this course includes information security professionals looking to enhance user acceptance of security measures within their organizations.
Hacking the Corporate Mind - Using Social Engineering to Improve Organizational Security Acceptance
Overview
Syllabus
Intro
Why Should You Listen To Me?
Defining The Problem
Know Your Enemy, Know Yourself
Infosec is an Obstacle
Business Need Trumps Security This is the hardest thing for defense geeks to accept
Infosec Needs Champions
What Do You Want?
What is an Infosec Geek to do?
Talk you Introverted Bastards!
Put On Your Social Engineering Hat
Find out how to blend in
Examine the Target
Insert The Data
Case Study: Prox Card Login (2)
Listen to the Users
Change Your Plans
Communication
Non-Technical Management
Conclusion
Taught by
Black Hat
