Making Open Work
May 8–9, 2017: Training & Tutorials
May 10–11, 2017: Conference
Austin, TX

Security starts with you: Social engineering

4:15pm4:55pm Wednesday, May 10, 2017
Location: Meeting Room 10 A/B
Level: Non-technical
Average rating: ****.
(4.50, 2 ratings)

Who is this presentation for?

  • Users, managers, and policy makers

What you'll learn

  • Understand what social engineering is and why it's important
  • Learn how these attacks take place, how to combat them, and why companies fail to prepare their staff for such an attack


Technology news outlets often report on malware, viruses, and backdoors but rarely discuss the soft skills hackers use in conjunction with technology to collect information on targets, leaving companies vulnerable. Tiberius Hefflin explains what social engineering is and why it’s important before describing the tactics employed by attackers in a way that the average technical user—the most likely target of social engineering—will understand.

Tibbs also examines why so many companies are delivering poor employee education and failing to get stakeholder buy-in that would create an informed, alert, and invested corporate environment and touches on ways to better address security training within a corporate setting to increase effectiveness of countermeasures.

Photo of Tiberius Hefflin

Tiberius Hefflin


Tiberius Hefflin evangelizes for privacy and security while contracting as a security evaluation engineer at Intel. Tibbs holds a degree in computer security from the University of West of Scotland. She is passionate about encouraging small children to take the plunge into STEM—and about laughing at cats on the internet.