This brief examines the often overlooked threats from within. Media attention has focused primarily on external threats with federal government and industry reports revealing alarming hacking and identity theft statistics. However, threats from within both public and private sector organizations may be even more prevalent than external threats and can have equally if not more serious consequences.
This brief discusses five significant insider threats and provides insight on ways to prevent, detect and respond to them. The threats are as follows:
- Malicious Employees
- Inattentive, Complacent or Untrained Employees
- Contractors and Outsourced Services
- Insufficient IT Security Compliance, Oversight, Authority and Training
- Pervasive Computing-Technology is Everywhere and Data is on the Move