Sociotechnical security

Security that accounts for the interaction of technology with people, processes and organisations.
Showing 1 - 25 of 36 results
Sort by: A-Z|Date
  • introducing cyber resilience

    Cyber resilience - nothing to sneeze at

    Blog post04 Jul 2018AuthorDavid KTopicsSociotechnical security

    David K introduces the concept of cyber resilience, and the benefits it brings.

  • MFA keys

    Stepping up to multi-factor authentication

    Blog post14 Jun 2018AuthorKate RTopicsSociotechnical security, Identity and passwords

    New guidance on implementing MFA to better secure online services

  • Cyber Mouse

    Of mice and cyber

    Blog post24 May 2018AuthorGeoff ETopicsSociotechnical security, Risk management

    Why recognising and understanding the complexity of systems is necessary if we want to make more informed security decisions.

  • Whale fin

    Phishing, spear phishing and whaling; does it change the price of phish?

    Blog post16 May 2018AuthorKate RTopicsSociotechnical security, Cyber attacks

    Regardless of the type of phish, you'll still need multiple layers of defence to protect your organisation.

  • Goldfish

    The Trouble with Phishing

    Blog post26 Feb 2018AuthorKate RTopicsSociotechnical security, Cyber attacks

    Why phishing your own users cannot solve all your problems....and may cause a few more.

  • Phishing attacks

    Announcing the NCSC's new Phishing Guidance

    Blog post06 Feb 2018AuthorEmma WTopicsSociotechnical security, Cyber attacks

    How to protect your organisation against email phishing threats.

  • Phishing attacks: defending your organisation

    Guidance06 Feb 2018TopicsSociotechnical security, Cyber attacks

    How to defend your organisation from email phishing attacks.

  • Risk management

    Now published: the NCSC's new guidance on risk management for cyber security

    Blog post14 Dec 2017AuthorJohn YTopicsSociotechnical security, Risk management

    Our new risk management for cyber security guidance is now live, and we want to know what you think.

  • Rear view mirror

    Reflecting on your development processes: fast-track your learning

    Blog post24 Nov 2017AuthorNicola BTopicsSociotechnical security, Design and configuration

    In such a fast-changing world, the ability to learn lessons quickly is what will determine the success of your product.

  • Wholegrain seeds

    Wholesome guidance from the Sociotechnical Security Group

    Blog post14 Nov 2017AuthorGeoff ETopicsSociotechnical security

    'There's a lot going on' - Geoff E, Head of the StSG, previews forthcoming guidance from the team.

  • Toolbox

    Coming soon: *new* guidance on Risk Management for Cyber Security

    Blog post30 Oct 2017AuthorJohn YTopicsSociotechnical security, Risk management

    'Toolbox' of techniques from the NCSC will lead the field towards better security outcomes, emphasising context over compliance.

  • Casablanca

    Cyber Security meet Engineering, Engineering meet Cyber Security…

    Blog post20 Sep 2017AuthorHelen LTopicsSociotechnical security, Sectoral engagement

    Helen L talks about the NCSC’s research into engineering processes ahead of the Institute of Civil Engineers’ Shaping a Digital World conference

  • Growing positive security cultures

    Growing positive security cultures

    Blog post18 Sep 2017AuthorEmma WTopicsSociotechnical security

    If your security culture isn't improving naturally, here's what you can do about it

  • Recycle

    Living with password re-use

    Blog post24 Aug 2017AuthorKate RTopicsSociotechnical security, Identity and passwords

    In a perfect world we'd use unique passwords for every online service. But the world isn't perfect...

  • Developer Centred Security

    NCSC award £0.5m grant to fund 'Developer Centred Security' research

    Blog post21 Aug 2017AuthorHelen LTopicsSociotechnical security, Partnerships

    Two-year project will explore how to motivate developers to adopt secure coding practice

  • Origin stories

    Origin stories

    Blog post07 Aug 2017AuthorKate RTopicsSociotechnical security

    How the backgrounds, skills and motivations of Cyber UK delegates can change the way we think about security.

  • Collaborating developers

    Securing Agile Delivery: Collaboration is Crucial

    Blog post19 Jun 2017AuthorNicola BTopicsSociotechnical security, Secure by default

    Good communication and engagement is central to making anything work in an agile manner, and security is no different.

  • "Do what I mean!" - focusing on the developer's intent

    "Do what I mean!" - time to focus on developer intent

    Blog post14 Jun 2017AuthorDan STopicsSociotechnical security, Skills and training

    Rather than demanding that software developers have the kind specialist knowledge required to build secure software from fundamental building blocks, programming languages and their associated tooling should focus more on what software developers are trying to achieve in the security domain. This ...

  • Star Wars password joke

    Even Jedi can't achieve Password Perfection

    Blog post03 May 2017AuthorEmma WTopicsSociotechnical security, Identity and passwords

    Emma W on why supporting users to do the right things is better then telling them what to do.

  • cyber risk management masterclass

    The Cyber Risk Manager's Toolbox - A Masterclass

    Blog post10 Apr 2017AuthorJohn YTopicsSociotechnical security, Risk management

    The techniques and theory that should be in every cyber risk manager's toolbox. What they are and how to find out more about them.

  • People: The Strongest Link

    Information28 Mar 2017TopicsSociotechnical security

    Watch a video of Emma W's keynote presentation from the opening day of CyberUK In Practice 2017.

  • Bring the security

    CyberUK: the unsung heroes of cyber security

    Blog post28 Mar 2017AuthorEmma WTopicsSociotechnical security

    Emma W puts 'people are the weakest link in security' firmly in the swear box.

  • Unicorn birthday cake

    Happy 1st Birthday StSG!

    Blog post27 Mar 2017AuthorGeoff ETopicsSociotechnical security

    To celebrate the 1st birthday of the StSG, Geoff E explains what the team has been up to.

  • Guinea pig

    Take part in LiveLabs at CyberUK

    Blog post13 Mar 2017AuthorKate RTopicsSociotechnical security, Research

    The NCSC is looking for CyberUK delegates to help us with our research.

  • Cartoon developer

    What if your life depended on secure code?

    Blog post03 Mar 2017AuthorHelen LTopicsSociotechnical security, Research

    How the NCSC's research will support the crucial role of software developers.