Usually my research ends up behind the 451 paywall, but I noticed the good folk at Guidance Software have made one of my recent reports ‘free’ to download at their site behind a registration wall.
It’s part of research I’m doing looking at the insider threat market and I’d be interested to hear your views and experiences. Do you see insiders as a threat avenue that needs investigating, or are there other more pressing issues in your environment?
To scope the area, I’ve defined insider threats as falling into one or more of the following three categories.
- Malicious insider – a legitimate employee, contractor or third party that knowingly and with ‘intent’ seeks to cause harm to the enterprise.
- Malicious outsider – a non-authorized outsider that gains control over an identity or masquerades as a legitimate user knowingly and with the intent to cause harm to the enterprise.
- Non-malicious insider – a legitimate employee, contractor or third party who, through his or her actions, causes harm to the enterprise without the intent to do so.
Have you used or trialled any of the products listed in the report for insider threat purposes. What was your take on it?