Sociotechnical security

Security that accounts for the interaction of technology with people, processes and organisations.
Showing 1 - 25 of 32 results
Sort by: A-Z|Date
  • Goldfish

    The Trouble with Phishing

    Blog post26 Feb 2018AuthorKate RTopicsSociotechnical security, Cyber attacks

    Why phishing your own users cannot solve all your problems....and may cause a few more.

  • Phishing attacks: defending your organisation

    Guidance06 Feb 2018TopicsSociotechnical security, Cyber attacks

    How to defend your organisation from email phishing attacks.

  • Phishing attacks

    Announcing the NCSC's new Phishing Guidance

    Blog post06 Feb 2018AuthorEmma WTopicsSociotechnical security, Cyber attacks

    How to protect your organisation against email phishing threats.

  • Risk management

    Now published: the NCSC's new guidance on risk management for cyber security

    Blog post14 Dec 2017AuthorJohn YTopicsSociotechnical security, Risk management

    Our new risk management for cyber security guidance is now live, and we want to know what you think.

  • Rear view mirror

    Reflecting on your development processes: fast-track your learning

    Blog post24 Nov 2017AuthorNicola BTopicsSociotechnical security, Design and configuration

    In such a fast-changing world, the ability to learn lessons quickly is what will determine the success of your product.

  • Wholegrain seeds

    Wholesome guidance from the Sociotechnical Security Group

    Blog post14 Nov 2017AuthorGeoff ETopicsSociotechnical security

    'There's a lot going on' - Geoff E, Head of the StSG, previews forthcoming guidance from the team.

  • Toolbox

    Coming soon: *new* guidance on Risk Management for Cyber Security

    Blog post30 Oct 2017AuthorJohn YTopicsSociotechnical security, Risk management

    'Toolbox' of techniques from the NCSC will lead the field towards better security outcomes, emphasising context over compliance.

  • Casablanca

    Cyber Security meet Engineering, Engineering meet Cyber Security…

    Blog post20 Sep 2017AuthorHelen LTopicsSociotechnical security, Sectoral engagement

    Helen L talks about the NCSC’s research into engineering processes ahead of the Institute of Civil Engineers’ Shaping a Digital World conference

  • Growing positive security cultures

    Growing positive security cultures

    Blog post18 Sep 2017AuthorEmma WTopicsSociotechnical security

    If your security culture isn't improving naturally, here's what you can do about it

  • Recycle

    Living with password re-use

    Blog post24 Aug 2017AuthorKate RTopicsSociotechnical security, Identity and passwords

    In a perfect world we'd use unique passwords for every online service. But the world isn't perfect...

  • Developer Centred Security

    NCSC award £0.5m grant to fund 'Developer Centred Security' research

    Blog post21 Aug 2017AuthorHelen LTopicsSociotechnical security, Partnerships

    Two-year project will explore how to motivate developers to adopt secure coding practice

  • Origin stories

    Origin stories

    Blog post07 Aug 2017AuthorKate RTopicsSociotechnical security

    How the backgrounds, skills and motivations of Cyber UK delegates can change the way we think about security.

  • Collaborating developers

    Securing Agile Delivery: Collaboration is Crucial

    Blog post19 Jun 2017AuthorNicola BTopicsSociotechnical security, Secure by default

    Good communication and engagement is central to making anything work in an agile manner, and security is no different.

  • "Do what I mean!" - focusing on the developer's intent

    "Do what I mean!" - time to focus on developer intent

    Blog post14 Jun 2017AuthorDan STopicsSociotechnical security, Skills and training

    Rather than demanding that software developers have the kind specialist knowledge required to build secure software from fundamental building blocks, programming languages and their associated tooling should focus more on what software developers are trying to achieve in the security domain. This ...

  • Star Wars password joke

    Even Jedi can't achieve Password Perfection

    Blog post03 May 2017AuthorEmma WTopicsSociotechnical security, Identity and passwords

    Emma W on why supporting users to do the right things is better then telling them what to do.

  • cyber risk management masterclass

    The Cyber Risk Manager's Toolbox - A Masterclass

    Blog post10 Apr 2017AuthorJohn YTopicsSociotechnical security, Risk management

    The techniques and theory that should be in every cyber risk manager's toolbox. What they are and how to find out more about them.

  • People: The Strongest Link

    Information28 Mar 2017TopicsSociotechnical security

    Watch a video of Emma W's keynote presentation from the opening day of CyberUK In Practice 2017.

  • Bring the security

    CyberUK: the unsung heroes of cyber security

    Blog post28 Mar 2017AuthorEmma WTopicsSociotechnical security

    Emma W puts 'people are the weakest link in security' firmly in the swear box.

  • Unicorn birthday cake

    Happy 1st Birthday StSG!

    Blog post27 Mar 2017AuthorGeoff ETopicsSociotechnical security

    To celebrate the 1st birthday of the StSG, Geoff E explains what the team has been up to.

  • Guinea pig

    Take part in LiveLabs at CyberUK

    Blog post13 Mar 2017AuthorKate RTopicsSociotechnical security, Research

    The NCSC is looking for CyberUK delegates to help us with our research.

  • Cartoon developer

    What if your life depended on secure code?

    Blog post03 Mar 2017AuthorHelen LTopicsSociotechnical security, Research

    How the NCSC's research will support the crucial role of software developers.

  • Wall of post-it notes

    Are security questions leaving a gap in your security?

    Blog post13 Feb 2017AuthorKate RTopicsSociotechnical security, Identity and passwords

    Even the best authentication can't help you if there is an easy way to bypass it.

  • Android password screen

    What does the NCSC think of password managers?

    Blog post24 Jan 2017AuthorEmma WTopicsSociotechnical security, Identity and passwords

    Emma W discusses the question everyone keeps asking us.

  • BBC Money Box on Passwords

    BBC Money Box talks passwords

    Blog post23 Jan 2017AuthorEmma WTopicsSociotechnical security, Identity and passwords

    BBC Radio’s Money Box namechecks the NCSC's 'three little words' password advice

  • Copy paste wall code

    Let them paste passwords

    Blog post12 Jan 2017AuthorSacha BTopicsSociotechnical security, Identity and passwords

    Allow your website to accept pasted passwords - it makes your site more secure, not less.