From the Office of the CTO: Building Effective Insider Threat Programs

Three Short Stories To begin this latest post and in order to properly frame the Insider Threat conversation, rather than use obscure statistics in an effort to convince you that you should be suspicious of all your employees and coworkers, I think it is much more effective to tell you a few stories. None of these stories come from my clients and none of this information is privileged. You can…

The Importance of Data Security and Insider Threat Programs in Mergers and Acquisitions

Mergers and acquisitions have become an important part of many organizations’ growth strategy. In most large transactions, countless hours are spent on due diligence, whether that due diligence is related to the financial health of the company, compliance with applicable regulations, or a variety of risk factors. Refreshingly, cybersecurity has emerged as a risk factor that is getting significant attention as part of the due diligence process. However, there is…

Ex-Employees Pose Greater Security Threat Than Expected

New research published by IS Decisions this week suggests that more than a third of former employees still have access to company data and/or systems after they have left an organisation with nearly 10% of employees polled admitting they had used their access/data rights after they had left an employer. The finding of the report suggest that to many businesses have a culture of “out of sight, out of mind”…