Happy New Year!
2021 started with the presidential pardoning of one of the most high-profile insider threat actors of our time – Anthony Levandowski – and culminated with the Log4j vulnerability that affected millions. Suffice it to say, 2021 was a memorable year for security teams.
Continued development of the Code42® Incydr™ product has delivered new ways to help our customers protect their most valued trade secrets, source code and client information and brought the growing problem of Insider Risk to the forefront for many organizations. Further, our knowledge and understanding of this persistent issue has deepened and we’ve enjoyed sharing that knowledge with the Insider Risk Management community. As we enter 2022, here’s a look back at our top 6 moments in Insider Risk we think are worth taking a closer look at.
The Insider Risk Management Market Makes Noise and Gartner Peer Insights Answers the Call
Gartner renamed their User Entity Behavior Analytics (UEBA) category on peer insights to Insider Risk Management Solutions. This evolution came from a great deal of change in the past few years. The process of defining and opening the category was driven by the Gartner Peer Insights Team and shows a fundamentally different approach to the insider problem.
Defining the Different Types of Insider Threats
Insider threats pose a serious challenge to an organization’s cybersecurity due to their unique access to a company’s data and resources. It’s also important to address the problems surrounding Insider Risk. A great way to start is to define the types of insiders to better understand and implement the right solutions for each type.
Read More >> 6 Types of Insider Threats
Transparency, Training and Technology: The Three T’s of an Insider Risk Management Program
In this video, President and CEO of Code42 Joe Payne talks about the Three T’s of an Insider Risk Management program. Collaboration culture enables employees to share more information with the use of collaboration tools and cloud-based platforms and trust is crucial within the organization. It requires a different approach than responding to external threats.
A Huge Tidal Wave of Stolen Company Data During the ‘Turnover Tsunami”
Employees are taking sensitive data from their own companies at three times the rate they were a year ago. This correlates with the massive job turnover that reached an all-time high in April 2021. Amidst this surge and the shift to remote work, employers are having a harder time keeping tabs on their valuable data.
Read More >> Workers Increasingly Steal Company Data During ‘Turnover Tsunami” Financial Times
Employees Are Taking More Than Just Memories When They Leave Their Jobs
There was a 40% increase in data exposure events between 2020 and 2021. The number one indicator that someone is going to take valuable data with them is if they plan to leave the organization. The Great Resignation, portability of data and remote work is the perfect recipe for Insider Risk.
A More Nuanced Insider Risk Management Strategy is Needed
According to the latest Data Exposure Report Volume II, nearly 6 in 10 security leaders expect Insider Risk to increase significantly in 2021 while also saying their employees are more likely to leak data today than they were pre-COVID. Few, it seems, have faith that existing DLP or CASB solutions are able to meet today’s challenges managing and mitigating Insider Risk.