Dr. Mary Aiken stands on the forefront of cyberpsychology, exploring the intricate relationship between expertise and human behaviour.
As a professor and chair of the Division of Cyberpsychology at Capitol Know-how College in Washington D.C., and a Professor of Forensic Cyberpsychology on the College of East London, she has devoted her profession to understanding the psychological implications of our digital lives.
A extremely sought-after cybersecurity speaker, Dr Aiken shares her experience on international levels, providing distinctive insights into cyber behaviour and digital threat. We spoke together with her to delve into the evolving panorama of cyberpsychology, the challenges posed by rising applied sciences, and the way people and organisations can navigate the complexities of the digital age.
In your view, how vital is it that cybersecurity evolves to completely incorporate the human layer, and what are probably the most urgent psychological components that should now be addressed?
To start with, let’s discuss our on-line world. As cyber psychologists, folks like myself have been discussing our on-line world for the very best a part of twenty years. The truth is, in 2016, NATO formally ratified our on-line world as an surroundings — as a website — recognising that the battles of the longer term would happen not solely on land, sea, and air, but additionally throughout laptop networks.
The US army conceptualises our on-line world as comprising three layers. Firstly, there may be the bodily community, which incorporates the {hardware}, cables, and infrastructure. Secondly, there may be the logical community, which facilitates communication throughout these networks. And at last, there may be the cyber persona layer—that’s us, the people.
Once we discuss incorporating the human layer into the cybersecurity equation, we have now to acknowledge that we’ve had 50 to 60 years of cybersecurity, and it has been very efficient in addressing the primary two layers: the bodily and logical networks. Nonetheless, the overwhelming majority of cyberattacks immediately are pushed by social engineering — and social engineering has way more to do with psychology than with expertise.
Because of this, we’re now seeing the emergence of a brand new sector underneath the broader umbrella of cybersecurity: the web security expertise sector, or SafetyTech. I’m proud to be one of many founding members of this sector within the UK. Our mission is to develop technological options to technology-facilitated issues — specifically dangerous and legal behaviours on-line.
To summarise, we should issue the human into the cybersecurity equation — from the attitude of customers, staff, and cyber attackers. And after we have a look at the spectrum of cyber menace actors — from state-sponsored to state-condoned, from hacktivists to activists, from organised cybercrime to stylish menace teams — we want options that aren’t solely technically strong and resilient, but additionally account for human psychological resilience.
We wish our information programs and networks to be safe, however equally, we want the folks working these programs to be psychologically secure, strong, and resilient. That’s how we will ship on what I name 360-degree resilience.
As one of many foremost consultants in cyber psychology, how does the science underpinning this area inform your public talking, significantly when partaking with sectors grappling with tech-driven behavioural change?
In cyber psychology, we examine particular results — for instance, the web disinhibition impact — which explains why folks usually behave in methods on-line that they might by no means contemplate in the true world. It’s a key behavioural driver in digital environments.
We additionally discover the facility of on-line anonymity, which will be useful in some contexts however can even act like a ‘superhuman energy of invisibility’. And, as with all powers, it comes with accountability — one thing not all the time exercised nicely by people.
In fact, we additionally observe optimistic on-line behaviours, comparable to altruism, seen in actions like crowdsourced fundraising. The elemental precept is that human behaviour modifications in on-line environments, and understanding the affect of those behavioural shifts is important.
By way of my talking engagements, I’ve the privilege of addressing a variety of sectors — expertise, cybersecurity, infosec, monetary companies, schooling, e-commerce, and healthcare. All of those industries profit from deeper insights into how expertise influences human behaviour, each from the consumer and operator views.
My analysis spans various areas, together with cyberchondria — a type of well being nervousness that manifests on-line. Many people have skilled this: a headache shortly spirals into Googling signs, resulting in panic over critical situations like mind tumours.
One other current space of focus is cyber fraud. Within the UK, laws such because the On-line Security Act is aimed toward addressing this sort of cyber-enabled criminality. I’ve contributed to quite a few info campaigns that concentrate on considered one of my key areas of experience: cyber behavioural profiling.
Many campaigns inform folks, “Don’t click on the hyperlink.” I am going a step additional — I analyse the semantics of phishing messages, breaking down how attackers manipulate language and psychology to compel customers to behave. Understanding the emotional and cognitive triggers that cybercriminals exploit helps us higher educate the general public and defend in opposition to such assaults.
When it comes to discuss subjects, I cowl a broad spectrum — from human components in cybersecurity to cyber behavioural profiling, and more and more, the psychology of AI.
With the fast rise of generative AI and different superior applied sciences, how should stakeholders throughout trade and authorities recalibrate their considering to successfully handle each threat and alternative?
Relating to applied sciences like AI, we’ve seen many false dawns — in addition to various ethical panics. Take the emergence of ChatGPT, as an example. Folks turned excited by the novelty of chatbots, however in fact, chatbots have been round for many years.
The primary chatbot, Eliza, was developed within the Sixties. She was modelled on Rogerian psychology and was extremely efficient at eliciting info. When she requested questions like “How are you?” and adopted up with “Inform me extra about your day,” folks started sharing deeply private tales. The response was so sturdy that the programme was shut down pretty shortly — its inventor was reportedly horrified by how a lot folks disclosed.
Within the Nineteen Nineties, I had the pleasure of working with one other chatbot, Jabberwacky, which was developed by a colleague of mine. It was an excellent and modern piece of expertise. What we’re witnessing now could be the continuing evolution of this house.
As for the widespread concern that AI will replicate human intelligence and render us out of date, I stay sceptical. As a behavioural scientist, I’d level out that we don’t but totally perceive how the human mind works. The concept we will replicate or substitute one thing we don’t totally comprehend is, to me, a flawed premise.
As a substitute of specializing in ‘synthetic intelligence’, I advocate for a special strategy: IIA (Intelligence Augmentation). This idea, impressed by Licklider’s Fifties work Man-Pc Symbiosis, proposes a mannequin wherein human and machine intelligence work symbiotically.
With IIA, we maintain the human on the centre of the method. That, I imagine, is how we must always body our engagement with AI and machine studying – specializing in augmentation, not substitute.
Wanting forward, there are undoubtedly thrilling and important modifications on the horizon. I’m significantly within the convergence of quantum computing, machine studying, and AI. That mixture will be the level at which we actually start to imitate facets of human intelligence.
In delivering insights throughout international establishments, from NATO to the UN, what core message or shift in mindset do you most hope audiences will stroll away with after listening to you converse?
As one of many world’s main consultants in cyber psychology, I’ve had the honour of being invited to talk at high-level boards world wide — from the White Home to NATO, from the United Nations to INTERPOL.
When it comes to conferences, I’ve spoken at gatherings throughout the spectrum — cybersecurity, infosec, healthtech, fintech, regtech, edtech, in addition to coverage and policing boards. This breadth and depth replicate the common relevance of cyber psychology in immediately’s digital world.
My function is to equip audiences with the data, instruments, and skillsets wanted to confront the complicated challenges that emerge on the intersection of people and expertise.
I assist folks suppose otherwise — empowering them to design and deploy technology-based options to technology-facilitated issues, together with dangerous and legal on-line behaviours.
Finally, my aim is to make folks extra knowledgeable, extra assured, and higher ready to interact with expertise in a approach that’s secure, moral, and efficient.
And most significantly, I goal to encourage collaboration, as a result of we’re all working on this shared surroundings of our on-line world. If we’re to make it safer and safer, it’ll take collective accountability and international cooperation.
Photograph by Mostafa Saeed on Unsplash
This interview with Dr Mary Aiken was performed by Mark Matthews.
Wish to be taught extra about cybersecurity and the cloud from trade leaders? Take a look at Cyber Safety & Cloud Expo going down in Amsterdam, California, and London.
Discover different upcoming enterprise expertise occasions and webinars powered by TechForge right here.