Cyber risks not only come from outside the organization: employees are often cited as the weakest link. Employees may leak or misuse company data, creating commercial and legal risk for the company; similar risks also arise from outsiders who have access to company data, such as contractors, partners, service providers. Insider cyber risks extend beyond malicious acts. They also arise from poor cybersecurity practices who lack the training needed to recognize phishing emails or exercise caution about forwarding sensitive information. How can companies effectively address this spectrum of insider risks and ensure their employees are not their greatest source of cyber vulnerability.
Wednesday, June 12
The enemy within: Addressing insider risks