Key Themes
Human factors first: Insider risk programs are shifting from an IT focus to organize around human behavior, reflected in cyber and other sensors. Whiles there's no clear answer on the number of incidents - both malicious and non-malicious - made possible (or more powerful) by insider threats, estimates almost always land above 50%. The persistence of the challenge is made worse by the complexity of the solution. Traditional cyber controls must be combined with distinct strategies and defenses to be effective.
Comments