Intelligent Cyber Threat Monitoring
The 2023 Insider Threat Report by Cybersecurity Insiders states that 74% of organizations are at least moderately vulnerable to Insider Threats. These can be:
- Regular employees
- Privileged Users and Administrators
- 3rd Parties
The 2022 Cost of Insider Threats Global Report identifies the top causes of Inside Threat incidents as:
- Employee/Contractor Negligence (56%)
- Criminal and Malicious Insiders (26%)
- Credential Theft (18%)
Source: https://static.poder360.com.br/2022/01/pfpt-us-tr-the-cost-of-insider-threats-ponemon-report.pdf
What makes someone a risk?
Insider Threats are driven by many factors:
- Money: Money difficulties, opportunity and a belief that they won’t get caught
- Vengeance: Belief they have been poorly treated by the organisation or someone with it.
- Negligence: Lack or training, over confidence or over work resulting in the wrong procedures being followed.
What are the behavioural indicators?
Whether you’re trying to spot malicious or negligent behaviour, the best way to detect Insider Threats is to keep an eye out for employees acting abnormally.
- If an employee appears to be dissatisfied at work, they might act less professionally in person and in correspondences. Likewise, the quality of their work might decline, and they may show other signs of insubordination, such as turning up to work late or leaving early.
- They might also take a more cavalier attitude towards work and their professional standards. An insider threat might talk often about how much they dislike their job and make reference to the fact they are planning or hoping to quit.
Source: https://www.itgovernance.co.uk/blog/what-is-an-insider-threat-definition-types-and-examples
How can Symilarity help?
- Insider Perils is an AI/Machine Learning based solution that is designed to look for examples of human behaviour that might be indicative of organisational vulnerability to Insider Threat.
- These markers are not usually one-off but happen over a period of time, perhaps escalating to a crucial point, unless detected and addressed.
- Insider Perils software aims to track user behaviour over time, as it is exhibited in written form and highlight potential risks. It looks for markers of varying types of behaviour that may represent a vulnerability.
- The first release of the product focuses on bullying and harassment through email
- The product roadmap will include corporate versions of instant messaging and social media with a wide range of behavioural markers. These include:
- malicious behaviours such as chronic complaining, blaming others, pranking, cheating
- non-malicious behaviours such as stress, paranoia, and apathy.
- Insider Perils design is informed through consultation with leading experts in the field of human behaviour and Insider Threat.