The Top Action to Combat Insider Threat
Created by the Security Executive Council
Over half of organizations polled do not have a formal insider threat program.While it is commonly thought of as one of the top risks, most organizations do not appear to have a formal insider threat mitigation program. Only 46% of respondents had a formal program in place.
Insider threat is not an IT-only hazardAbout 44% of respondents had some responsibility for information security. The level of responsibility for information security had no significant impact on responses.
Other Actions Being TakenWe asked respondents to provide descriptions of other actions they are taking to address insider threat. While monitoring and limiting access was clearly the most important action to combat insider threats, it appears that awareness campaigns and training were the most frequently cited as additional actions being taken. This was followed by pre-employment screening / background investigations. Some other interesting actions included partnerships with law enforcement, email classification systems, and having a formal insider threat manager reporting to the executive committee.
What if cost or gaining buy-in was not a factor?We asked the respondents, "If you could do anything, regardless of cost or buy-in, to mitigate insider threat what would that be?" Here is a selected sampling of some of the answers that were provided:
For more information on this topic see Program Best Practices: Insider Threat
Watch our 3-minute video to learn about how the SEC works with security leaders. Contact us at: contact @secleader.com.
Copyright Security Executive Council. Last Updated: June 20, 2018