Fight Hackers with behavioural insights

How to use nudging to increase cyber-security in your organisation
Book workshop
Learn how to utilize principles from behavioural economics and cognitive science to improve your organization’s cyber-security.

You will be introduced to:

  • How you easily and cost-effective can change IT behaviour of your employees to match the desired security level.
  • How you can gain much more value for your IT security expenditure by allocating your focus towards a human component as well.
  • The nudging toolbox with four simpel design principles easy to implement in your own practice.
  • Gain an understanding of why nudging is a relevant and when it is not a relevant tool.
Why you need to consider nudging to improve your IT security

Digital trust is a pre-condition for digital growth. However, there seems to exist a ‘cyber paradox’: companies spent billons on cyber-security systems that fail. An increasing number of companies experience breach of their IT security with loss of reputation and revenue to follow. In 2016, 69% of Danish companies were victims of cyber-attacks whilst 64% of all companies suffered economic loss due to cyber-attacks. Additionally, given GPDR, which by law must be implemented by all companies by May 25th 2018, the need for an efficient cyber-security is more important than ever.

Research indicates while most companies have established basic security measures such as firewalls and antivirus in place they don’t pay enough attention to the potential security risks represented by their employees. We have a tendency to see hacking and breaching as complex mechanisms only software products and services can counter, however, most often it is an exploitation of how people tend to act: hacking can often be relegated to basic cognitive limitations in the way our brain is organised. The key influencer in most breaches is thus not the hacker but people themselves. Hence, while it is critical not to neglect the importance of technical cybersecurity solutions, organizations also need to address behavioural factors -‘Psyber Security’- in order to effectively protect themselves against cyber attacks.

However, simply informing employees of the importance of cybersecurity are seldom enough to drive change. Employees are humans whose decisions are context-dependent, influenced by habits and other social norms. Our actions do therefore not always adhere what is the rational smart thing to do. We forget to backup data, click on content in unsecure emails, reuse weak passwords and enter personal information on unsecure websites.

Fortunately, by utilizing research from the behavioural and cognitive science, we can mitigate these risks, by targeting cyber-security at the intersection of human-machine interactions. Nudging is all about harnessing the knowledge of how the human operating system works enabling people to make smart decisions. Especially, since hacking methods change continuously, why updating cyber-security technology is not only enough to keep your company safe. By combining cyber-security technology with knowledge of behavioural economics and cognitive science, we can, to a greater extent, create lasting results that more effectively counteract hacking.


Workshop facitator

Stig Nyman, Founder of Nudge Crowd

When Stig is not working on buiding the Nudge Crowd community, he enjoys sharring his enthusiasm and knowlegde about behavioral insights by facilitating workshop and teach at Copenhagen Business School in behavioural economics.

For  questions.

What people say

In the Danish Business Authority, we wanted to explore how behavioural insights may be leveraged to create innovative ideas on how to improve cybersecurity among Danish firms. Nudge Crowd helped us engage with skilled behavioural- and interaction designers. They facilitated a well executed open innovation workshop, drove attention to our challenge in their community and through social media. We got a lot of inspirational ideas and great feedback on our activities.


Christian von Stamm Jonasson

Head of secton: Data & digitial Growth, The Danish Business Authority

Stig facilitated a nudging workshop for a course on Designing Circular Societies that I coordinated at Copenhagen Business School. Stig was an excellent communicator and was able to walk our class through the basics of nudging theories, while making the topic very practical and relevant for the content of our course. He brought energy and charisma to the classroom and was able to provide great feedback to a student’s hands-on exercise. We received great feedback from students for this session, and I would highly recommend Stig as a collaborator! – Paula, Student


Paula Amiama

Course coordinator & student , Copenhagen Business School

Stig delivered an intensive and instructive workshop on the basic principles of nudging. Simple and hands on. Something we can certainly use in our work to lead change.


Malene Kingo

Managing partner, Proacteur


Every breach occurs because somebody in that company did something they weren’t supposed to do, or somebody in that company failed to do something they were supposed to do. Hackers do not cause breaches. People do. And every breach comes down to that.


Frank Abagnale

former conman and current FBI fraud consultant

Share This