Training: 8–9 November 2016
Tutorials & Conference: 9–11 November 2016
Amsterdam, NL

Security through design: Making security better by designing for people

13:15–13:55 Thursday, 10 November, 2016
The human element
Location: G102 Level: Non-technical
Average rating: ****.
(4.50, 2 ratings)

What you'll learn

  • Understand why focusing on designing for people can help us create security solutions and processes that are simple, intuitive, and pleasurable—and therefore more effective


Jelle Niemantsverdriet explains why certain devices, programs, or companies lead to utter frustration while others consistently delight us and what can we learn from these insights when dealing with human behavior related to security.

Drawing on these insights, Jelle outlines how we typically create our security processes, teams, and solutions to show that all too often we create something without properly understanding what our colleagues or customers are trying to achieve, only to bombard them with awareness training and policies because they “just don’t get it” and because “humans are the weakest link.” Jelle explores user-centered design methods in other disciplines like economy, psychology and marketing that can help us build security in a truly usable way—not just our tools but also the way we setup our teams, the way we communicate, and the way we align incentives.

Every interaction with security is an opportunity to improve convenience and bring a smile to somebody’s face. By understanding the impact of design, we can do a lot to improve corporate productivity and security itself.

Photo of Jelle Niemantsverdriet

Jelle Niemantsverdriet


Jelle Niemantsverdriet is a director at Deloitte specializing in cyber incident response. Jelle has extensive experience in leading large international IR and forensics projects across various industries worldwide. While working at Verizon, he was one of the coauthors of the annual Data Breach Investigations Report. Jelle draws on his experience in dealing with incidents to help companies effectively build their security organizations. He passionately looks for analogies with other disciplines and tries to convey the view that security should truly enable the objectives of the business. Jelle is a regular conference speaker and aims for lively and nonstandard presentation content and style.