According to a recent Ponemon report, unintentional employee negligence severely diminishes the productivity of the Information Technology group’s (IT) function — IT security practitioners spend an average of almost three hours each day dealing with the security risks caused by employee mistakes or negligence.
Unintentional employee actions, through negligence or simple carelessness, can often lead to a security breach.
INTRODUCTION: INSIDER THREAT WITHOUT THE CLOAK AND DAGGER
When we consider Insider Threat, what usually comes to mind is the malicious employee, motivated by either money or politics, to steal data that can be sold on a black market or used to damage the organization’s reputation. We picture scenes of stealthy, underhanded activity including thumb drives, dark offices and a perpetrator plugging in to an unattended computer for the 30-second window that a fellow employee is in the washroom.
