Security Behaviour Coach (S-SBC)

Discover the crucial role of a Security Behaviour Coach and make a difference in the world of information security!
EnrollBook as in-company

What will you learn?

  • 9Aimed at Security- and IT professionals and process designers who want to gain insight into how the employee’s psyché works and how products and processes can be adapted.
  • 9 Learn to analyze processes and identify vulnerabilities, while trying to thoroughly understand behavioral causes.
  • 9Learn to communicate credibly with stakeholders across the whole organization.

Information

  • 2 course days, all day
  • 6 hours of self-study
  • R1 CPE credit per study hour

Security Behaviour Coach course

In an increasingly digital world, preventing information loss or damage is essential to maintaining business continuity, complying with laws and regulations and protecting an organisation’s reputation.

As a Security Behaviour Coach, you understand that information security relies heavily on employee behaviour. Although they are aware of the risks, they do not always exhibit the desired behaviour to prevent- or respond appropriately to incidents. This is where your expertise comes in. Your challenges as a Security Behaviour Coach are fascinating and current. You will face issues such as “How do I adapt my product and/or process or how do I help the user with a behavioural change intervention?”.

With your skills, you examine organisational processes for vulnerabilities in the digital domain caused by the actions of employees. Starting from a behavioural approach, you and the team devise effective solutions to reduce the risk of incidents in organisational processes.

This course has been developed in cooperation with PCSI (a partnership between TNO, ABN-Amro, ING, Achmea, ASML, and the Dutch tax authorities).

After this course you will be able to:

  • Analyse processes and identify vulnerabilities, while thoroughly understanding behavioural causes.
  • Derive relevant information from both qualitative and quantitative data.
  • Assess and understand the cybersecurity behaviour of end-users.
  • Communicate in a credible way with stakeholders across the organisation.
  • Advise on effective improvements or behavioural interventions that minimise the impact of vulnerabilities.

Prerequisites to joining the Security Behaviour Coach

This is an advanced-level security training. If you do not yet have experience at foundation level, we recommend you to first take the Security Behaviour Foundation course. We furthermore recommend having basic knowledge of information security. If you do not already have this knowledge, you might want to take the Information Security Foundation course first.

Is the Security Behaviour Coach course right for you?

This course is aimed at Security professionals, IT professionals and process designers who want to gain insight into how the employee’s psyché works and how, based on this insight, products and processes can be adapted to the employee’s way of working.

What is included in the Security Behaviour Coach course?

  • Official SECO-Institute course materials
  • Training from passionate instructors with exceptional skills
  • Access to the SECO member portal
  • Practice exam
  • Exam voucher
  • Membership to SECO’s Alumni Network after passing the exam

Security Behaviour Coach Course Modules

Module 1- Risks Inventory

  • Inventorize vulnerabilities, threats, incidents and (sources of) behavioral risks.
  • Conduct a risk analysis.

Module 2- Stakeholdermanagement

  • Conduct a stakeholders analysis.
  • Conduct various types of interviews with both internal and external stakeholders.
  • Advise various internal and external stakeholders.
  • Use different interests and perspectives, obtain commitment from various stakeholders on the later to be determined intervention

Module 3 – Target behaviour

  • Formulate target behaviour.
  • Apply the ‘Theory of Planned Behaviour’ (TPB).
  • Measure employee behaviour using the chosen measurement tools.

Module 4 – Behavioural Factor Analysis

  • Identifying barriers to the desired behaviour using the COM-B model.
  • Make qualitatively better choices regarding the selection of intervention functions, with insight into how malcontents use Cialdini’s 7 principles.

Module 5 – Behavioural interventions

  • Handle the Behaviour Change Wheel (BCW).
  • Select and implement the most appropriate and feasible (behavioural) interventions.
  • Create support among both internal and external stakeholders for the most appropriate (behavioural) interventions using Graves’ theory.
  • Apply nudges as an intervention or use them to facilitate an intervention.
  • The participant will be able to assess the effect of the behavioural intervention.

Module 6 – Dynamic assurance

  • Apply the PDCA circle on both an interventional and process level.
  • If necessary, initiate additional activities together with stakeholders to achieve the intended behavioural goal(s).

    Security Behaviour Coach Certification Exam

    The SECO-Institute exam is administered externally by SECO-Institute and consists of multiple choice questions. Upon successful completion of the exam, you will receive SECO’s ‘Security Behaviour Foundation’ certificate and you will be able to apply for your digital S-SBC badge.

    The exam is included in the course. You can email info@securityacademy.nl for a voucher code. You can use this code to take the exam free of charge through the SECO Institute.

    Exam information

    • Language: English
    • Delivered: Online via a certified proctor
    • Questions: 10 multiple choice, 5 open questions and 1 case
    • Time: 120 minutes

      What are the benefits of a SECO Security Behaviour Coach (S-SBC) certificate?

      An S-SBC certificate shows to your employer that you have advanced knowledge about the impact and effects of human behaviour on information security processes. As a security behaviour coach you can be counted on to reduce the chances of human errors that can lead to security breaches. Furthermore do you demonstrate the ability to help identifying and mitigating potential risks early, ensuring the company’s data and assets remain secure.

      Authors & Lead Trainers

      Martin Goudzwaard
      Trainer

      Information Security Management Expert

      Rob Rijk
      Trainer

      Information Security Awareness Expert

      Online Live

      2 days

      All day

      In-company training tailored to your needs

      Schedule this training as in-company. Upskill your entire team in the most cost-effective way!