Organizations must establish an effective security awareness program. As security professionals we’ve likely heard (and said) it more times than we can count. But how often do we stop to think about what it actually means or how it can be implemented? The media is littered with reports of attacks, which emphasizes that it’s time to change the way we approach awareness training. It’s time to lose the never-changing slide deck and think outside the box. In this talk we’ll examine the art of influence at a group level and use social engineering to create positive change.
- Creating A New Awareness Program
- Adapting An Existing Awareness Program
- Measuring Your Success
About Valerie Thomas

Valerie Thomas is an executive consultant for Securicon LLC that specializes in social engineering and physical penetration testing. After obtaining her bachelor’s degree in electronic engineering, Thomas led information security assessments for the Defense Information Systems Agency (DISA) before joining private industry. Throughout her career, Thomas has conducted penetration tests, vulnerability assessments, compliance audits and technical security training for executives, developers and other security professionals. Additionally, she has presented at multiple BSides events, Derbycon, Blackhat, Defcon, HackMiami and several other conferences.
About Harry Regan

Harry Regan, CISSP, CISM, PSP, is VP of security consulting services for Securicon, LLC, a company specializing in security services for critical infrastructure and regulated industries. For nearly 40 years, Regan has worked in areas of technology, security and privacy, holding senior positions and participating with a dozen new technology companies. Regan has worked in commercial, federal and defense arenas in executive, senior technical staff and consulting roles. He has extensive experience with threat and vulnerability assessments, technology countermeasures, system control and data acquisition (SCADA) systems, building and industrial infrastructure protection and security/privacy program management. He received a bachelor of arts in economics from Catholic University and a master of science in information technology and operations research from American University, and has been a prolific speaker of a number of security topics including featured interviews on CNN and NBC regarding the operability and effectiveness biometrics and other security technologies.