Kolide
Kolide's Honest Security approach focuses on educating employees about security and improving adherence to security recommendations through trust, transparency, and informed consent.
Company Overview
Kolide is a company that emphasizes a unique and transparent approach to security called Honest Security. This approach is designed to educate employees about security while improving adherence to the security team's recommendations and compliance objectives. Kolide focuses on building a positive working relationship between the end-users and the security team based on principles of trust, informed consent, and transparency.
Honest Security Approach
Kolide's Honest Security approach highlights several key principles. It delivers contextual and personalized recommendations to end-users at the point of performance, avoiding generic alerts or failures. Predictable and proportional consequences are generated to improve adherence to security recommendations. The approach also involves a consent-based system where end-users have a say in the installation and management of security software on their devices.
Transparency and Informed Consent
Transparency is a core tenet of Kolide's Honest Security model. End-users are provided with access to audit logs and a Privacy Center, enabling them to scrutinize how their data is being used. Honest Security also requires informed consent for specific actions such as viewing or transmitting the geolocation of a device, reading the contents of files in the user’s directory, and remote-locking or erasing personally owned devices.
Empathetic Intelligence
Kolide utilizes empathetic intelligence to generate security insights. This involves considering common use-cases and identifying sources of risk. By understanding the user's perspective and the contextual factors, Kolide's security measures aim to be both effective and considerate of the user's needs.
Team Motivation
Kolide's Honest Security approach encourages team motivation through group-level incentive structures rather than individual gamification. This collective method fosters a culture of shared responsibility and mutual support among team members, enhancing overall security compliance and cooperation.
