By Isaac Kohen, published in Help Net Security
Is your security approach exposing your organization to risk? The answer is “yes” if your security strategy focuses exclusively on external threats. If the breaches of the last 24 months have taught us anything – it’s that insider threats are a cause for equal if not greater concern.
In a recent survey, IT professionals were asked the types of insiders that they thought posed the greatest security risk. 56% of the risk was thought to be regular employees, 55% suspected privileged IT users, while 42% of the risk was thought to be from outside contractors or temporary workers.
When it came to IT assets, those surveyed said databases and file servers were thought to be at the highest risk. However unlike outside threats, insiders already have access to your databases and files.
When asked about the main enablers of insider threats, 37% of respondents believed that it was because too many users have excessive access, while 36% believed it was an increasing number of devices that have access to sensitive data.
>> Continue reading in Help Net Security