Kylie Watson, CISO at DXC Technology, discussed how behavioural science and tailored risk management approaches are critical to navigating the modern cyber security landscape.

In an interview with ADAPT’s Principal Research Analyst, Peter Hind, Kylie shared her insights on balancing internal and external responsibilities in her role as both an internal and consulting CISO.  

She spoke about the importance of using behavioural insights to create a culture of shared responsibility for security, and the evolving nature of cyber threats faced by organisations today. 

Kylie will join 150 leading CISOs & CSOs from enterprise and government organisations in to debate strategies on how to navigate the vulnerability minefield & enable the age of AI at Security Edge on 10 October. 

 

Understanding risk appetite and engaging stakeholders  

Kylie emphasised the need for organisations to properly assess and understand their risk appetite, using real-world scenarios such as ransomware attacks to frame these discussions.  

By linking risk to tangible impacts on the organisation, she believes stakeholders can make more informed decisions.  

This helps engage leaders without overwhelming them with technical details, fostering a collaborative approach to cyber security. 

 

Using behavioural science in cyber security  

Kylie applies her behavioural science background to her cyber security role, using psychological insights to influence behaviour and drive engagement.  

She sees this as essential in creating an organisational culture where security is not viewed as a burden but as a shared responsibility.  

This includes motivating teams and stakeholders by focusing on positive reinforcement rather than fear-based tactics. 

 

Balancing internal and consulting roles  

In her dual role, Kylie manages both DXC’s internal security and its consulting services. 

This allows her to stay ahead of emerging threats while maintaining a broad view of the security landscape across different industries.  

She highlighted how understanding the behaviour of cyber criminals can provide an edge in predicting future threats, particularly in areas such as ransomware.  

Her ability to assess risks beyond what the data might immediately reveal has helped her detect and address issues before they escalate. 

 

Key Takeaways: 

  • Behavioural science enhances security culture: By applying psychological principles, organisations can foster a more engaged and proactive security culture. 
  • Risk management must be tangible: Framing risk appetite discussions around real-world scenarios leads to more effective decision-making. 
  • Calm and focused response to crises: Emotional regulation and measured communication are key during cyber security incidents, ensuring better decision-making and coordination. 
Contributors
Kylie Watson CISO at DXC Technology
Kylie Watson is an experienced executive in the Information Technology Infrastructure, Apps, and Services Industry. Driven by a strong client focus, she... More

Kylie Watson is an experienced executive in the Information Technology Infrastructure, Apps, and Services Industry. Driven by a strong client focus, she supports large-scale business and technical transformation, leveraging her expertise in change management and behavioural economics. Kylie excels in leading large sales and delivery teams across multiple disciplines and regions, driving the adoption and embrace of new technologies. She is adept at growing capabilities and skills to meet market demand across Australia, New Zealand, and Asia, and at building partnerships and alliances to solve client challenges.

Kylie has extensive experience working across all industries and is well-connected with key C-suite stakeholders in federal, state, and local government, as well as in retail, mining, oil and gas, utilities, distribution, health, and financial services. She has a proven track record of driving cultural change and embracing diversity and inclusion, earning awards in coaching, mentoring, and innovation.

With over 25 years of executive leadership experience in technology and consulting, spanning multiple industries, international geographies, and platforms, Kylie is well-versed in Google, AWS, IBM Cloud, and Azure. Her solution experience and qualifications include cybersecurity, data, AI, cloud, and change management. Additionally, she is an AI ethicist with some quantum computing capability.

Kylie is also a media spokesperson, keynote speaker, and author on technology topics, and serves as an advisor to universities and government agencies on cyber, technology research, and education.

Less
Peter Hind Principal Research Analyst at ADAPT
One of the ICT industry’s foremost analysts and commentators, Peter Hind has spent over 25 years advising and talking on topics across... More

One of the ICT industry’s foremost analysts and commentators, Peter Hind has spent over 25 years advising and talking on topics across the technology industry. His primary areas of interest are the potential of technology to transform the way organisations operate, the change management obstacles executives encounter in realising this potential, as well as the tactics and techniques leaders have deployed to overcome these difficulties.​

With roles across IDC, Unisys, NCR, Sigma Data, and others, Peter now takes on multiple roles within ADAPT including the moderation of private events and roundtables, interviewing business executives about the strategies they are pursuing and assisting with the structuring of delegate surveys.​

Less
security leadership culture