Cybersecurity and the Social Sciences

Cybersecurity is frequently approached as a technical field centered on systems, networks, and defensive tools. Through prior coursework and personal experience, however, I have increasingly come to understand that cybersecurity is inseparable from the social environments in which technology operates. Security failures are often less about broken code and more about human behavior, organizational culture, communication breakdowns, and misaligned incentives.

Before beginning CYSE 201S, my exposure to cybersecurity has already highlighted the role people play in both creating and mitigating risk. Concepts such as social engineering, insider threats, user error, and policy enforcement consistently demonstrate that technical safeguards alone are insufficient. Even well-designed systems can be undermined if they do not account for how individuals and organizations actually behave. These observations have led me to view cybersecurity as a socio-technical discipline rather than a purely technical one.

My interest in the social sciences as they relate to cybersecurity stems from this realization. Fields such as psychology, sociology, economics, and political science all influence how security decisions are made and how threats evolve. Attackers often exploit trust, authority, fear, and misinformation—factors rooted in human interaction rather than technology. Likewise, defenders must consider usability, ethics, training, and policy compliance to create effective and sustainable security solutions.

Here is a video of James Lyne, an industry leader in cybersecurity, giving a TED talk on cybersecurity and some of the impacts that social sciences provide in the frame of securing our digital data.

https://youtu.be/fSErHToV8IU?si=D6ScjJsVQ-DxsahZ

Lyne, James. “Everyday Cybercrime — and What You Can Do About It.” YouTube, uploaded by TED, 16 Sept. 2013.