Insider threat programs work best when they are driven by employees and focus on fostering a supportive but secure culture.
Looking to develop a robust and supportive Insider threat program?
Intentional insider threats can be one of the worst security incidents you can face. They can be hugely embarrassing not to mention damaging owing to the legitimate access an insider possesses.
The need for insider threat programs is being recognised by organisations around the world. They can be difficult to develop and even harder to sell into the organisation. In our experience of developing these programs and training employees the programs that are the most successful are those that have employee assistance programs and support at their heart. Like everything in security a layered approach to insider threat programs is important but so is collaboration with other departments, creating a culture of support and trust and crucially getting employees to not just buy into the program but also drive ideas for development. Insider threat management has to be a team effort.
Get in touch to discuss how we can help you achieve your security awareness or resilience goals.
Are all insider threats bad apples?
The “bad apples” argument for insider threats is simply too reductionist. Here is why: When an intentional insider threat manifests it is a product of […]
Defcon Talk: Using SE to create insider threats and win all the things
Lisa Forte’s Defcon 2021 talk on social engineering and insider threat. Transcript to follow.
Insider Theft of $119M worth of Coca Cola IP
What happened? An engineer who worked for Coca Cola and other manufacturers is alleged to have stolen valuable trade secrets in order to set up […]
Tesla Insider Threat Case (Khatilov)
Tesla Insider Threat Case Study According to the official Filing, Tesla is suing a former employee and software engineer named Alex Khatilov alleging trade secret […]
Insider Threat $800K Rogue Admin
Rogue Admin: Disgruntled former IT admin Charles E. Taylor quit his job at an unnamed Atlanta based distribution company before going on a sabotage spree costing the company $800,000 USD to redress.
Insider Threat Fraud: £4.6m in self-signed invoices
Of the three categories of insider threat; theft, fraud and sabotage, insider threat fraud is often the most complex, inventive and difficult to detect. This […]