Building a Security Culture
This is a member-only chapter. Log in with your Signal Over Noise membership email to continue.
Log in to readModule 5 · Section 1 of 7
The most technically correct AI security policy in the world fails if people route around it.
IBM’s 2025 Cost of Data Breach Report found that 97% of breached businesses lacked AI access controls. Cisco’s research found that 43% of employees use AI tools at work without telling their manager. These numbers do not reflect a workforce that is careless — they reflect a workforce that has decided the productive benefits of AI outweigh the risk of non-compliance with policies they experience as obstacles.
If you are responsible for a team, your security problem is not primarily technical. It is cultural. The question is how to make secure behaviour the path of least resistance rather than the bureaucratic alternative to just doing things the convenient way.