Usable Security: Bridging Research and Industry Practices
Iulia Ion
BSides Seattle 2026 · Day 2 · Track 2
Julia, who completed her PhD in usable security at ETH Zurich and has spent 13 years in industry at Google and Snowflake, delivers a talk that bridges academic usable security research with practical industry application. The talk spans the history of foundational usable security research, a detailed walkthrough of her own award-winning study comparing expert and non-expert security behaviors, practical techniques for running user studies in enterprise settings, and a forward-looking analysis of how AI is reshaping usable security challenges.
AI review
A research-grounded talk that bridges academic usable security with industry practice, anchored by a SOUPS impact award-winning study comparing expert and non-expert security behaviors. The methodology walkthrough is rigorous, the Snowflake case study is practical, and the AI-era analysis raises genuine new challenges. Not exploit research, but it demonstrates real research depth in a field that directly impacts defensive security outcomes.