Insider risk – behaviors and technical trends to look out for
Defense in depth focuses on the identification of certain behaviors that can be indicators of threats (intentional or unintentional). Some of these behaviors and indicators are covered next.
Behavioral indicators
Behavioral indicators can be identified and noticed based on the following scenarios:
- Attempts to circumvent physical and logical information security controls
- Routine risk exception requests for enterprise policy violations or training
- Displaying resentment toward co-workers, partners, and clients
- Unapproved and emergency leave away from work
- Being silent and quiet at work
- Dissatisfied or disgruntled employees, contractors, vendors, or partners
Technical indicators
Technical indicators can be tracked from the number of logs and alerts within an organization’s security operation center or by an IT team, by analyzing the number of patterns from the...