security awareness Archives - Jean-Christoph von Oertzen

What Fantasy Role-Playing Games Can Teach Us About Cybersecurity Roles

jean-christoph — Fri, 14 Nov 2025 18:34:47 +0000

— And why your SOC might actually need a Bard 🐉⚔️ Cybersecurity teams are often compared to armies, fire brigades, or special forces. Personally? I think they’re much closer to a party of heroes in a classic fantasy role-playing game. No matter how many frameworks, SIEMs, or AI tools we summon, defending a digital kingdom […]

The post What Fantasy Role-Playing Games Can Teach Us About Cybersecurity Roles appeared first on Jean-Christoph von Oertzen.

Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity

jean-christoph — Sun, 09 Feb 2025 18:52:45 +0000

Why We Keep Losing Despite Stronger Security Controls Over the past three years, businesses have almost doubled their confidence in cybersecurity—rising from 32% in 2021 to 54% in 2024 (The Global Cost of Ransomware Study, 2025). Despite this, ransomware’s impact has only grown: 40% of affected companies suffered significant revenue losses, 58% experienced operational downtime, […]

The post Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity appeared first on Jean-Christoph von Oertzen.

European Cybersecurity Awareness Month: Key Takeaways for a Safer Digital Future

jean-christoph — Mon, 02 Dec 2024 23:16:02 +0000

October is synonymous with the European Cybersecurity Awareness Month (ECSM), a time when cybersecurity professionals around the world unite to promote awareness and share valuable insights. Throughout this month, I shared a series of LinkedIn posts that highlighted various facets of cybersecurity, including password managers, multifactor authentication (MFA), the dangers of phishing, and the revolutionary […]

The post European Cybersecurity Awareness Month: Key Takeaways for a Safer Digital Future appeared first on Jean-Christoph von Oertzen.

Boosting Cybersecurity in German SMEs with Gamification and Serious Play

jean-christoph — Wed, 01 May 2024 13:14:14 +0000

TL;DR Gamified cybersecurity training offers an engaging and effective way to improve security awareness and practices within German SMEs. The ALARM Information Security project demonstrates the success of integrating gamification into training, enhancing retention and understanding of cybersecurity principles. By leveraging customized game scenarios, regular workshops, and participatory feedback loops, SMEs can bolster their cybersecurity […]

The post Boosting Cybersecurity in German SMEs with Gamification and Serious Play appeared first on Jean-Christoph von Oertzen.

Unlock Effective Cybersecurity: Simplify Policies with the Clarity of the OSI Model

jean-christoph — Mon, 18 Mar 2024 23:01:59 +0000

TL;DR Diving into the essence of effective cybersecurity, this article shines a light on the transformative power of simplifying policy language, inspired by the OSI model’s structured communication layers. It goes beyond theoretical insights, offering actionable strategies for CISOs to demystify complex jargon and make cybersecurity policies accessible and engaging for every team member. Highlighting […]

The post Unlock Effective Cybersecurity: Simplify Policies with the Clarity of the OSI Model appeared first on Jean-Christoph von Oertzen.

Leveraging Psychology in Cybersecurity: Strategies for SMEs

jean-christoph — Tue, 13 Feb 2024 07:24:20 +0000

TL;DR This article delves into the intersection of psychology and cybersecurity, emphasizing the critical role of human elements in developing a resilient security culture within SMEs. Key points include the pivotal nature of psychological theories like Hofstede’s Cultural Dimensions and BJ Fogg’s Behavior-Knowledge Gap model in understanding and influencing organizational behavior towards cybersecurity. It highlights […]

The post Leveraging Psychology in Cybersecurity: Strategies for SMEs appeared first on Jean-Christoph von Oertzen.

Ethical considerations in phishing tests: to inform employees or not?

jean-christoph — Sat, 13 Jan 2024 12:25:55 +0000

TL;DR This article delves into the ethical considerations in phishing tests, highlighting the balance needed between conducting realistic simulations and maintaining fairness in cybersecurity training. This article explores the complexities of conducting phishing simulations in the workplace. Key takeaways include the importance of transparency in fostering a positive security culture, building trust through clear communication, […]

The post Ethical considerations in phishing tests: to inform employees or not? appeared first on Jean-Christoph von Oertzen.

Summary of a LinkedIn Post Series: Ideas and Insights for Effective Security Awareness in Cybersecurity Awareness Month

jean-christoph — Mon, 27 Nov 2023 08:34:39 +0000

Introduction Welcome to a summary overview of my LinkedIn posts published during the Cybersecurity Awareness Month in October 2023. Throughout this month, I delved deeply into the topic of security awareness, sharing valuable insights and strategies to enhance awareness in businesses. This article summarizes the key aspects of my discussions and highlights the importance of […]

The post Summary of a LinkedIn Post Series: Ideas and Insights for Effective Security Awareness in Cybersecurity Awareness Month appeared first on Jean-Christoph von Oertzen.