Cybersecurity has modernized everywhere except the human layer. This book introduces modern human risk management—data-driven, targeted, and outcome-focused—to finally bring behavior into the security stack.

blog

We wrote the book on modern human risk management

blog

We wrote the book on modern human risk management

Latest

Blog

< 1 Min

The hidden multiplier in human risk

Risky behaviors don’t exist in a vacuum. When they stack up in the same people or roles, they become toxic. Fix those overlaps first.

Blog

2 Min

Why one-size-doesn’t-fit-all

Precision-targeted security campaigns outperform generic ones by focusing on relevance, speed, and evidence, driving faster behavior change and measurable reductions in human risk.

Blog

2 Min

Vanity metrics are lying to you

Vanity metrics hide real exposure. Measuring actual security behaviors—and how fast and how long they change—reveals whether organizations are truly reducing human risk.

Blog

2 Min

Toxic combinations: where human risk multiplies

Toxic risk combinations reveal where human behaviors overlap to amplify exposure, showing security teams exactly where focused remediation delivers the greatest reduction in real-world risk.

Blog

2 Min

Who are your AI swashbucklers?

Analysis of real-world AI usage shows which teams upload sensitive data, what they share, and why visibility into AI usage is now central to managing human risk.

Blog

2 Min

What’s the half-life of a security campaign?

The behavior decay interval shows whether security behavior change lasts, revealing when improvements fade and why relevance, clarity, and ongoing monitoring matter more than one-time wins.

Go to page

Eyebrow

Get fresh insights every week.

Vestibulum id ligula porta felis euismod semper.