Platform

Unify HRM Overview

Platform

Capabilities

Identify: Human Risk Operations Center (HROC)
Dashboards

Power Insights

Benchmarks

Protect: Workflow Automation & Orchestrations
Nudges

Phishing Simulations

Training

Report: Human Risk Index (HRI)
Employee Scorecards

Manager Reporting

Board and Executive Reporting

Bundles

Unify Go
Start your journey to HRM here.

Monitor risk by:

Security Training Compliance

Phishing and Email

Unify Enterprise
Covers risk in Unify Go and adds:

Malware & Ransomware

Data Loss

Account Takeover

Featured Resources

Living Security Blog
Living Security A Leader in Forrester Wave
link

Living Security Blog
The Little Dot in the Top Right Corner
link

Living Security Blog
Why Your Team Should Have A Business Continuity Plan
link
Solutions

Solutions Overview

Solutions

By Role

CISO
Provides CISO’s, executives, and boards a complete picture and prioritization of workforce risk by type, department, location, and more.
link

Security Awareness Team
Go beyond training completion and phishing click rates and proactively safeguard your organization from human-induced security incidents.
link

GRC
Identify, resolve and track commonly violated policies with granular accuracy to lower risk and improve workforce compliance.
link

SOC/IR
Unleash the true potential of your human firewall with data-driven insights and action plans that curb threats before they become incidents.
link

By Risk

Training Compliance
Monitor training compliance status for users and segments across the enterprise.
link

Phishing & Email
Identify the users most and least at risk to social engineering attacks and protect them.
link

Malware & Ransomware
Proactively protect users from malware including viruses, worms, Trojan viruses, spyware, adware, and ransomware.
link

Data Loss
Pinpoint when data is at risk of leaving your controlled environment through unauthorized access or malicious intent.
link

Identity Threats
Get visibility into the most susceptible users for account compromise and mitigate their risk.
link
Products

Products

Products Overview
Transform how your organization approaches Security Awareness and Training by shifting to a proactive HRM approach that creates a strong culture of security.

Living Security Blog
Living Security A Leader in Forrester Wave
link

Unify Human Risk Management
Establish a proactive security loop.
Security Awareness Training
Interactive compliance training for modern threats.
CyberEscape Rooms
Put your team in the center of security scenarios
Cybersecurity Awareness Month
Create a cyber vigilant workforce in October
Cybersecurity Engagement Training Go beyond compliance training Phishing Training
Stop social engineering attacks in their tracks with realistic simulations and training
across phishing, vishing, smishing, and more.
HRM

HRM

Human Risk Management: Proactive Security
Human Risk Management (HRM) is the process of identifying, assessing, and mitigating risks associated with human behavior in relation to an employee's use of technology.
HRM Maturity Model
How far is your company along the path to true proactive security?
HRMCon on Demand Watch over 10 hours of sessions & hear from over 20 cybersecurity risk management professionals. HRM: Ask Me Anything
Monthly live series focused on diverse Human Risk Management topics and continuing the conversation around HRM.
Forrester Wave™: Human Risk Management Report Access The Forrester Wave™: Human Risk Management, Q3 2024 to discover why Living Security is named a leader for reducing human risk with innovative, real-time insights and solutions.

Living Security Blog
The Little Dot in the Top Right Corner
link
Resources

Resources

Resources
Level up on Human Risk Management with a comprehensive collection of webcasts, whitepapers, ebooks, and more.
Blog
Access hundreds of informative blogs with deep dives and best practices relating to the full array of cybersecurity risks we face.
Cybersecurity Webinars
Watch dozens of webinars tackling some of cybersecurity’s biggest challenges featuring thought leaders from leading organizations.
Case Studies
See how a variety of organizations utilize Living Security’s HRM Platform, Training, and Phishing to reduce risk with proactive defense.

Partners
Human Risk Management Powered by Partners.
Technology Alliance Program
Extend the value of your offering with HRM.
Partner Support
Unlock your potential with our partner hub.

Living Security Community Share HRM best practices Newsroom Read the latest news on Living Security. Support
The more you know, the more you grow.
Why Living Security
Establish a proactive security loop.
Schedule Demo

Maria Long, Munich Re Specialty Insurance | Violet Sullivan, Crum & Forster | Julian Sylvestro, Marsh

The State of
Human Risk Quantification

WATCH ALL HRMCON SESSIONS

Evaluating Cyber Insurance
bringing together voices in human risk management

It’s undeniable that the vast majority of cyber events can be attributed to human error. From falling victim to a phishing attack to misconfiguration of security controls, humans have the power to be the weakest link or the strongest asset when it comes to avoiding a cyber-attack. So how does the cyber insurance market quantify human susceptibility when evaluating an insured? In this session, an expert panel of cyber insurance risk managers and advocates discuss the status quo of human risk quantification, and how we hope to evolve evaluation of this risk facet.

Meet Maria Long

Maria long is tenured cyber insurance risk professional and a Certified Information Privacy Manager (CIPM). In addition to underwriting cyber and technology risks, she is responsible for curating and deploying valuable risk management programs for insureds to drive cyber and privacy resilience and shape the maturity of organizations in an effort to generate loss avoidance. Maria has spearheaded numerous initiatives aimed at enhancing risk resilience and sustainable growth. Her collaborative approach and ability to foster strong partnerships have earned her recognition as a trusted advisor among clients and colleagues alike. Maria currently serves as Vice President within the Cyber and Technology E&O practice at Munich Re Specialty, and is responsible for the launch of their Reflex™ program, a complimentary cyber risk management program for cyber insureds. Beyond her professional endeavors, Maria is passionate about mentorship and empowering the next generation of risk management professionals. She actively participates in mentoring programs and industry forums, dedicating her time to nurturing talent and fostering innovation within the field.

Meet Violet Sullivan

Ms. Sullivan is an industry-leading cybersecurity and privacy attorney and Certified Information Privacy Professional (CIPP/US) who has provided thousands of clients with cybersecurity, privacy and emerging technology (AI) services.  She currently leads the Crum; Forster Cyber Solutions Team, providing cyber insurance policyholders with value added resources before, during and after a cyber incident.  Her expertise in preparing businesses for cyber incidents and managing scaled breach responses has made her a trusted authority for public and private sector clients, including many Fortune 100 companies. Ms. Sullivan also serves as a professor of Cybersecurity; Privacy Law for Baylor Law School’s LLM. Program, where her focus on litigation management has made her course especially valuable to general counsels and leading law firms nationwide.

Meet Julian Sylvestro

Julian Sylvestro is a Senior Vice President in Marsh’s US & Canada National Cyber Practice and resides in Cincinnati, OH. In addition to managing a team of Cyber Advisors, he is responsible for a full range of advisory and placement services to clients with complex cyber, technology and services risk, including exposure identification, financial impact analysis and insurance program development and execution for Fortune 500 & Global 1000 Companies. Julian’s expertise with complex global clients includes depth in the Defense Contracting, Life Sciences, Healthcare, Manufacturing, Agriculture, and Technology industry sectors. Julian joined our firm in 2022. Prior to joining Marsh, Julian was a Director at Secureworks, where he developed the Insurance and Legal Verticals connecting technical cybersecurity experts with cyber insurancestakeholders. In his time at Secureworks he also helped stand up a ransom negotiation offering to help organizations impacted by ransomware safely navigate interactions with threat actors. Julian has a passion for driving alignment across the Cyber Risk ecosystem to provide more effective and efficient incident response services to his clients. Prior to Secureworks, Julian also spent a decade serving clients’ cyber brokerage needs for both retail and wholesale insurance broking organizations.

Watch HRMCon on Demand now!

Unveiling the Adversary: War Stories and Discoveries from the Human Element

David Kennedy, TrustedSec

Quantifying Behaviors to Mitigate Human Risk in HRM

Chris Poirel, Living Security

More sessions available

Hear from more than 20 speakers!

Human element breaches remain perfunctory, with one touted silver bullet: security awareness and training (SA&T). This is a market that has grown exponentially and yet, with all this training and quizzing, human-related breaches continue to increase year over year. Join us for this session to examine the major expected changes in SA&T as the industry transitions to an approach that centers on behavior: human risk management. This new approach prioritizes positively influencing behavior and instilling a security culture within organizations. The session will provide attendees with Forrester’s definition of human risk management and answer questions like: What are the drivers and challenges of security awareness and training? How is the human risk management market maturing? What are the challenges, opportunities, and practicalities of moving from SA&T to human risk management?

Jess Burn Biography

Jess is a principal analyst at Forrester serving security and risk (S&R) professionals. She contributes to Forrester’s research on the role of the CISO with a focus on security talent management. Additionally, Jess covers incident response and crisis management, and email security. Prior to her analyst role, Jess spent eight years as a principal advisor on Forrester’s Security & Risk Council. In this role, she was a trusted partner to a network of CISOs and S&R leaders, making and communicating critical decisions about and investments in their programs. Before she was an advisor, Jess led a Forrester Consulting practice focused on helping tech and service providers with their business and go-to-market strategies. Jess holds a Bachelor of Arts in communications, with concentrations in English and marketing, from the University of Connecticut.