Byte-size Bulletins

Cyber risks inside your organisation

Written by Simon Heath | Jun 21, 2021

The frequency and cost of insider threats have increased by 31% and 47%, respectively between 2018 and 2020. Risks will increase due to remote working.

External threats are often the focus of security. But insider negligence is an under-addressed area of risk mitigation concludes Ponemon Institute’s report: 2020 Cost of Insider Threats.

Their research defined three insider threats causing breaches:

  1. Careless or negligent employees or contractors – 62%
  2. A criminal or malicious insider – 23%
  3. A credential thief – 14%

The report identifies five signs that your organisation is at risk:

  1. Untrained employees do not know or understand security policies.
  2. Devices are left unsecured.
  3. Data is stored in unsecured Cloud locations.
  4. Security is undermined to simplify tasks.
  5. Patching is not up to date.

The report divides the costs of insider incidents into seven areas. Of those, investigation and escalation are attracting the highest increase in spending. These are the report’s areas of concern and cost:

  1. Monitoring and surveillance. How to detect and deter insider incidents.
  2. Investigation. Discovering the source, scope and magnitude of incidents.
  3. Escalation. Raising awareness with key stakeholders and organising initial management response.
  4. Incident response. Reacting to the incident including a final management response.
  5. Containment. Lessening severity and shutting down operations.
  6. Ex-post response. Addressing root causes to minimise future incidents.
  7. Remediation. Repair systems and processes and restore assets.