Deep Thought: A Cybersecurity Story

ideas42 aims to help solve difficult social problems using insights from behavioural science. In this instance, the problem in question is the human aspect of cyber security. The paper applies psychology and behavioural science principles to common cyber security...

Embedding Security Behaviours: using the 5Es

This framework is designed to help embed and sustain security behaviours in employees. The framework is condensed into 5Es (Educate, Enable, Environment, Encourage, Evaluate) and explains how to implement these using examples and tactical interventions.   Read...

How to Launch a Behavior-Change Revolution

A team spear-headed by University of Pennsylvania researchers have launched an ambitious research project called Behavior Change for Good. The project will attempt to determine the best behavioural-change practices in three areas: health, education and personal...

Behavioural Insights in Public Health England

The public health behavioural insights team offer a general introduction to behavioural economics, show how theories have been successfully applied to the public health sector and present a framework for designing behavioural change interventions.   Read full...

Nudging better security

This article explains what ‘behavioural nudging’ is and offers examples of how nudging could be used to encourage desired security behaviours.   Read full paper     Authors: Max Klugerman PwC

Nudging Online Security Behaviour with Warning Messages

Researchers tested the effectiveness of 9 different ways of warning users about cyber security threats. Making users aware of the steps they could take to minimise risk was effective in triggering more secure behaviour. Gain-framed messages, loss-framed messages and a...

Awareness is only the first step

Improving cyber security awareness is often assumed to improve cyber security, however this paper suggests it’s necessary for people to be engaged in cyber security in order to make people a robust cyber defence. The paper builds a model for engaging people in...

Cybersecurity’s Human Factor: Lessons from the Pentagon

The article shares the US Defense Department’s approach to addressing the human side of cyber security, allowing business leaders to apply the same framework to their own organisations.   Read full paper     Authors: James A. (Sandy) Winnefeld Jr.,...

On cyber security, technology and human behaviors

According to this post, it’s important to take an innovative approach when it comes to cyber security as conventional means (such as posters or one-time awareness training) do not change behavior. Further, the post suggests risk-mitigating behaviors must become...

ABC of Behaviour Change Theories

83 theories of behaviour change that could be used to design behaviour change interventions are discussed in detail.   Read full paper     Authors: Susan Michie, Robert West, Rona Campbell, Jamie Brown & Heather...

The Effect of Social Influence on Security Sensitivity

Even though there has been an increased effort to increase security sensitivity amongst the population, most individuals ignore security advice. This paper found a few social influence processes – processes that influence the behaviours of individuals with words and...

EAST: 4 simple ways to apply behavioural insights

After years of lectures, seminars, workshops and talks with policy makers, the UK government’s behavioural insights team have developed a simpleified framework to help encourage behavioural change. To encourage the adoption of a new behaviour, the team argue, the behaviour should be Easy, Attractive, Social and Timely, or EAST as an acronym.

Using Behavioral Economics for Postsecondary Success

Many programs that aim to help individuals in postsecondary education underperform due to the fact that humans do not behave in an expected, rational way. In this report, it’s suggested that behavioural economics can provide an insight into how people behave and make...

MINDSPACE: Influencing behaviour through public policy

In an effort to aid policy makers seeking to change behaviour, a team of researchers summarise nine non-coercive influencers of human behaviour: the messanger (who a message comes from); incentives (such as loss avoidance); norms (what other people already do);...

Switch: How to change things when change is hard

According to this book’s authors, we need only understand how our minds work to unlock shortcuts that can lead to long term behavour change. This book explores how our minds work and some shortcuts tha might be of use when seeking to change human behaviour....