Skip to main content

Save or Share this Report

For Security & Risk Professionals

How To Manage The Human Risk In Cybersecurity

Continuous Improvement: The S&R Practice Playbook

January 13, 2021

Primary author headshot


Playbook icon

This is the Continuous Improvement report in The S&R Practice Playbook For 2021.

Why Read This Report

Traditional approaches to security communication are limited to perfunctory one-off training sessions that fail to take customers, regulators, and other external stakeholders into account and rarely effect long-term behavioral change. This report lays out a four-step plan that CISOs should follow to manage the human risk. It provides design principles for creating transformational security awareness initiatives which will win the hearts and minds of senior executives, employees, the technology organization, and customers. This is an update to a previously published report; Forrester has reviewed and updated it to ensure relevance and accuracy.

Get Access

Already a Client?

Log in to read this document.

Become a Forrester Client

Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.

Purchase Report

This report is available for individual purchase ($745 USD).


Table of Contents

  • Make Behavioral Change, Not Awareness, The Name Of The Game
  • Build A Human-Centric Security Program
  • Design Transformative Security Awareness Initiatives
  • Recommendations

  • Start With The Culture And Influence Of Your Own Security Team
  • Supplemental Material
  • Related Research Documents

Recommended Research