How To Get Your Staff to Actually Care About Cybersecurity

razorthorn logo
Razorthorn Security
May 14, 2025
Razorthorn

Is Security Awareness Broken? Amy Stokes-Waters & Jemma Think So
Traditional security training is failing — here’s how to fix it.

In this episode of Razorwire, host James Rees is joined by security awareness experts Amy Stokes-Waters and Jemma from CultureGem for an honest conversation about what’s really wrong with security training.

From tick-box CBTs to phishing simulations that backfire, they unpack why organisations are wasting money on awareness campaigns that don’t change behaviour — and share what to do instead. You'll hear how security culture, personalised training, marketing principles and better measurement can reshape awareness for the modern workforce.

If you’re tired of eye-roll-inducing training, clunky modules, or compliance metrics that mean nothing, this one’s for you.

🎯 3 Talking Points You’ll Take Away

  • Why Traditional Training Doesn’t Work – Learn how CBTs miss the mark and why it’s time for micro-learning, personalisation, and human-centred design.
  • Marketing Principles for Cyber – Discover how borrowing tactics from McDonald’s or TikTok can make awareness campaigns stick.
  • Real Metrics That Matter – Move beyond "80% passed" to engagement data that proves behaviour change.

🗣 “They're hitting the compliance metrics. Brilliant. But the culture is still inherently insecure.” – Amy Stokes-Waters

🎧 Listen on your favourite platform: (https://razorwire.captivate.fm/listen)

🔍 What We Cover

  • Why less than 1% of IT budgets go to people despite 95% of incidents being human-caused
  • How mobile-first and “choose your own adventure” training boosts engagement
  • Building a role-based approach to secure each department, not just the whole org
  • The dangers of phishing tests that punish curiosity instead of encouraging reporting
  • Creating a security champions network to boost peer influence
  • Reframing awareness to benefit employees, not just protect the organisation
  • How to market security the same way you’d promote a product or idea

🎬 Watch next
🛡️ Security vs Privacy: Ethics of Data Collection – (https://youtu.be/iIRv0qVXmWM)
🔐 The Business of Biometrics – (https://youtu.be/eWfRalOk0E8)

🤝 Connect with your host
James Rees is an information security veteran and founder of Razorthorn Security, with over 25 years of hands-on experience protecting global organisations. Razorwire brings you conversations with professionals across the security spectrum — blending expert insight with a touch of humour and real talk.

🔗 https://www.razorthorn.com
📧 podcast@razorthorn.com
📍 LinkedIn: (https://www.linkedin.com/company/razorthorn-security)
📍 Twitter: @RazorThornLTD
📍 YouTube: (https://www.youtube.com/@RazorthornSecurity)

Copyright © 2026 OpsMatters™. All rights reserved.