0      0

(ISC)2 Security Congress 2022

SC2292 - Creating Lasting Security Change

Oct 12, 2022 10:15am ‐ Oct 12, 2022 11:15am


Anyone who has ever tried to implement a new password policy, implement awareness training, or deploy new secure development requirements (to name a few) knows that implementing change can be hard. Users and stakeholders may push back on necessary security changes because people don’t like the unknown and change creates uncertainty.

You might feel like you are on an island trying to do what’s best, but it doesn’t have to be this way. The presenters will discuss why change is hard and ways to implement change that enables user adoption and sustainment.

Learning Objectives:
  • Determine how to engage stakeholders and end users before, during and after a security change.
  • Engage leadership and end users in order to communicate change and encourage change adoption and sustainment.
  • Understand the technology adoption model necessary to implement a successful security change in an organization.


  • Ngozi Pole, Sr. Manager Change Management, Independent Change Management Consultant
  • Sharon Smith, CISSP, Program Manager, Amazon

You must be logged in and own this session in order to post comments.