Black Hat Europe: Strong security relies on a 'culture of openness'
Security analyst Regina Bluman says managers and executives need to “be human” and “admit mistakes”


Executives and managers need to do a better job of creating a safe space for knowledge-sharing if they hope to make their organisations more secure.
This is according to security analyst Regina Bluman, who claims that the infosec industry’s habit of gatekeeping knowledge is making collaboration and learning more difficult – and the overall sector less secure.
“Security can be complex at times, but it doesn't have to be,” said Bluman, speaking on the second day of Black Hat Europe 2021.
“I think a lot of people like to overcomplicate it because it makes us feel a bit special. It makes us feel a bit fancy. But we can simplify things so we can build these breakpoints. We can help people in the business understand how to share knowledge safely and we can make it more simple for them,” she added.
Employees from minority backgrounds are more likely to be reluctant about voicing their opinions, according to Bluman, who called for a greater “diversity of thought [and] background” in the sector.
“It's great that there are more women in the industry, but diversity doesn't stop there. If you're on a panel, if you're contributing on a webinar, try and get other people [to contribute] who are diverse,” she told Black Hat attendees.
RELATED RESOURCE
The truth about cyber security training
Stop ticking boxes. Start delivering real change.
Bluman, who is a member of anti-harassment initiative Respect in Security, encouraged managers and executives to “be human” and “admit mistakes” in order to help create a more open culture “by being an example”.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
“If you are an exec, if you are a manager of a team, show people that it's okay to fail, that it's okay to put your hand up and say: ‘I've done something, I'm not perfect’,” she said.
Bluman also encouraged organisations to do more to contribute information, as opposed to commodifying it, and advised individuals to find opportunities to share their knowledge and not belittle others for their mistakes.
This comes after research by Respect in Security found that almost one in two cyber security employees had experienced harassment at work socials (48%) and in the office (47%), while more than a third admitted to having experienced bullying at industry events (36%).
Having only graduated from City University in 2019, Sabina has already demonstrated her abilities as a keen writer and effective journalist. Currently a content writer for Drapers, Sabina spent a number of years writing for ITPro, specialising in networking and telecommunications, as well as charting the efforts of technology companies to improve their inclusion and diversity strategies, a topic close to her heart.
Sabina has also held a number of editorial roles at Harper's Bazaar, Cube Collective, and HighClouds.
-
Why Microsoft thinks diversity will keep security workers relevant in the age of agentic AI
News Improved AI skills and a greater focus on ensuring agents are secure at point of deployment will be key for staying ahead of attackers
-
Microsoft: get used to working with AI-powered "digital colleagues"
News Tech giant's report suggests we should get ready to work with AI, revealing future trends for the workplace
-
'Digital hide-and-seek': Workers are wasting hundreds of hours a year sourcing the information they need to carry out their role
News Knowledge workers globally are wasting a quarter of their working week tracking down information, new research from Atlassian has revealed.
-
Untethered: How CIOs and CISOs are paving the way for the new hybrid workforce
Whitepaper Effective techniques to transition from exposed legacy infrastructure to an effective zero trust strategy
-
Unlocking the power of your digital services
Sponsored Businesses have invested significant cash into technology since COVID-19, but are they really getting their money's worth?
-
Delivering fast and secure digital experiences for the modern hybrid workforce
Whitepaper A new approach to digital experience monitoring that can monitor the health of all systems
-
Collaboration is the glue that holds your business together
SPONSORED A combination of productivity tools and cloud telephony can enable the best from your workforce
-
The future of work and the forgotten workforce
whitepaper How to deploy a mobile-first strategy so no one gets left behind
-
How to empower employees to accelerate emissions reduction
in depth With ICT accounting for as much as 3% of global carbon emissions, the same as aviation, the industry needs to increase emissions reduction
-
Worldwide IT spending to grow 4.3% in 2023, with no significant AI impact
News Spending patterns have changed as companies take an inward focus