Unconventional Paths to Cybersecurity (AKA keeping your Nan Safe From Hackers)

How can overcoming personal adversity lead to a successful career in cybersecurity?

Welcome to Razorwire, the podcast that delves into the world of cybersecurity by sharing the journeys of its most inspiring figures. 

Join us for a truly heartwarming episode as we welcome Jemma, the brilliant mind behind CultureGem and a passionate champion for security behaviour and culture. Jemma's incredible journey - from surviving homelessness to becoming a respected voice in InfoSec - reminds us how our different paths can bring richness and depth to our industry.

Jemma shares her powerful story and gives fresh perspectives on the human side of cybersecurity, why accessibility matters in learning and the reason technical solutions alone will never be enough. We discuss the changing face of InfoSec culture, the eyebrow-raising phenomenon of "cyberlebrities", and how we might better spend our security budgets to protect the people who matter most.

Whether you're a seasoned professional or just starting your InfoSec journey, you'll find wisdom in Jemma's approach to making security concepts meaningful for everyone - from corporate executives to her beloved nan.

Tune in for a conversation that, for me, genuinely felt like catching up with a friend at the pub, whilst challenging us all to think differently about creating a more inclusive approach to security.

3 Key Talking Points:

1. The Human Element of Cybersecurity

Learn why organisations allocate less than 1% of security budgets to human factors despite 97% of incidents being attributed to human error. Jemma explains how addressing this disconnect creates stronger security cultures and reduces vulnerabilities.

1. Accessibility as a Security Imperative

Discover how CultureGem's accessible learning approach removes barriers to understanding security concepts. Jemma demonstrates why making security comprehensible to everyone isn't just inclusive - it's fundamental to effective protection.

1. The Evolving InfoSec Community

Gain perspective on industry dynamics from "cyberlebrities" to challenges faced by professionals from non-traditional backgrounds. This discussion gives valuable context for navigating the InfoSec community.

"If 10% of an IT budget is spent on cyber, which is there or thereabouts, less than 1% is spent on human side of cyber. Yet 97% of incidents are put down to, rightly or wrongly, human error."

- Jemma, Founder of CultureGem

Listen to this episode on your favourite podcasting platform: https://razorwire.captivate.fm/listen

In this episode, we covered the following topics:

• Overcoming Adversity: Learn how navigating difficult circumstances can build transferable skills for an InfoSec career 
• Budget Realignment: Discover why redistributing your security budget towards human factors can address the root cause of 97% of incidents 
• Inclusive Security: Explore how removing barriers to learning strengthens your organisation's overall security posture 
• Employee Engagement: Find out how to move beyond compliance to create genuine security motivation amongst your staff 
• Community Dynamics: Navigate the changing InfoSec landscape and its impact on collaboration and knowledge sharing 
• Diverse Recruitment: Understand the value of hiring security professionals with unconventional backgrounds and experiences 
• Translating Complexity: Learn techniques for explaining security concepts in ways that resonate with non-technical audiences 
• Solution Assessment: Gain insights into evaluating security vendors and avoiding "ambulance chasing" during incidents 
• Combating Bias: Recognise and address behaviours that create barriers for underrepresented groups in security teams

Resources Mentioned

• CultureGem - Empowering Small Businesses, Enterprises, and Security Professionals with Adaptive Learning Solutions
• The Cyber Sentinels Handbook – by James Rees 
• OWASP - (Open Web Application Security Project) 
• WannaCry - The 2017 ransomware attack that inspired Jemma's move into cybersecurity

Other episodes you'll enjoy

• Mental Health, Organisational Culture & The Human Side of Cybersecurity 

YouTube: https://youtu.be/k_VVu_bQZXg 

Spotify: https://open.spotify.com/episode/1h88WI6RlKjF0BQ3ylbnfH?si=1Zqi4lrNSzO-klDQleyEhw 

• Cybersecurity Burnout & Organisational Culture

YouTube: https://youtu.be/naUT5jBQE_s 

Spotify: https://open.spotify.com/episode/2xaF8hTnFR7MfQ0ob9wBu3 

Connect with your host James Rees

Hello, I am James Rees, the host of the Razorwire podcast. This podcast brings you insights from leading cyber security professionals who dedicate their careers to making a hacker’s life that much more difficult.

Our guests bring you experience and expertise from a range of disciplines and from different career stages. We give you various viewpoints for improving your cyber security – from seasoned professionals with years of experience, triumphs and lessons learned under their belt, to those in relatively early stages of their careers offering fresh eyes and new insights.

With new episodes every other Wednesday, Razorwire is a podcast for cyber security enthusiasts and professionals providing insights, news and fresh ideas on protecting your organisation from hackers.

For more information about us or if you have any questions you would like us to discuss email podcast@razorthorn.com.

If you need consultation, visit www.razorthorn.com, We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion.

Linkedin: Razorthorn Security

YouTube: Razorthorn Security

Twitter:  @RazorThornLTD

Website: www.razorthorn.com

Loved this episode? Leave us a review and rating here

All rights reserved. © Razorthorn Security LTD 2025

This podcast uses the following third-party services for analysis:

OP3 - https://op3.dev/privacy