Have you noticed how security policies often read like legal documents rather than practical guides? In this talk, I'll show you how we've been inadvertently creating barriers by writing policies in legalese and passive, authoritarian language that makes security feel like something that happens TO people rather than WITH them. Drawing from my experience transforming security policies into clear, engaging documents, I'll demonstrate how combining readability science, inclusive language, and AI can revolutionize the way we communicate security requirements.

Using real examples and live demonstrations, I'll show you how shifting from "The System Administrator shall enforce..." to "We protect our systems by..." transforms policies from intimidating documents into collaborative guidance that shapes behavior. You'll learn how to measure policy readability using LIX scores, harness inclusive language to build shared responsibility, and leverage AI tools to scale these improvements across your organization.

Whether you're a security professional frustrated with writing policies that gather digital dust, or a leader wondering why your security initiatives aren't getting traction, you'll leave with practical tools to make policies that work for people, not lawyers. Join me to learn how we can make security policies speak human and make everyone feel that security is indeed their responsibility too.