Awareness, Education, Prevention: The 3-Factor Approach to Mitigate Insider Threats

Insider threats continue to be an organization’s number one weakness. This is because an insider is able to bypass any firewalls, detection systems, or access gates. Most breaches that are the result of insiders happen from negligent employees or managers. Malicious insider incidents are fewer but often cause far more damage. How much damage can one employee do to an organization? The answer is dependent on access, information quality, and intent. Everyone who works with or in an organization is an insider.

Awareness, Education, Prevention: The 3-Factor Approach to Mitigate Insider Threats

Insider Threat Awareness
Awareness of insider threat can be hard to develop, mainly because the behaviors of an insider threat actor overlap with the behaviors of an ambitious employee. However there is one factor that can help define the difference, and that is an understanding of intent. Malicious insiders who seek to steal, spy, or sabotage the organization almost always leave trails or provide hints of their intentions. Meanwhile, negligent insider threats can usually be deterred with internal policies and security measures. This is why it is best to establish insider threat awareness programs. These programs exist create an environment and culture of security awareness. Read the article at IT Briefcase.

Isaac Kohen

Isaac Kohen

Isaac Kohen started out in quantitative finance by programming trading algorithms at a major hedge fund. His time spent in the financial world and exposure to highly sensitive information triggered his curiosity for IT security. He worked as an IT security consultant for several years where he spearheaded efforts to secure the IT infrastructure of companies with masses of confidential data. When Isaac first entered the industry, IT norms were to prohibit and lock out as many people as possible to protect data. He found that this was a very ineffective way of solving the issue because it made it hard for many people who wanted to cause no harm, to do their jobs. He decided to focus on algorithms targeting user behavior to find outliers within the companies he consulted with to help detect insider threats.Isaac can be contacted at ikohen@teramind.co

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *