Insider Threat

The new working environments have dramatically changed compared to what they were just few years ago. The fast development of new communication technologies, the need for organisation to expand their business in new markets to remain competitive and generate profits for their shareholders, and the need for organisations to attract talents globally, introduced new challenges. Those challenges have further increased from the post COVID-19 pandemic, with employees all around the world preferring the remote working to the traditional workplace.

As result the attack surface has extended and organization and the insider threat is a raising issue.

In addition, the recent conflict between Russia and Ukraine has seen an increase of nation state sponsored attacks, not only using criminal organizations, offering hacking tools as a services, but also leveraging on insiders.

Large organisations, in all industry sectors, nowadays have access to an unprecedent amount of data, which often is the most valuable company’s asset. To be effective and efficient in their business propositions, organisations extensively use third parties, which are now considered strategic partners, and more often offshore offices and processes, to exploit labour arbitrage, in developing countries.

The insider threat is an emerging issue and it comes under many forms, such as data breaches, fraud, sabotage and even terrorist attacks, employees and more in general every authorised individual with access right to a company’s resource can create enormous dam-ages in term of financial losses, service interruption, reputational damage and even physical harm to the workforce.

Nowadays, with the evolution of advanced data analytics, artificial intelligence, machine learning and big data, sophisticated mathematical models can be developed to identify and monitor employees’ behaviours to identify anomaly patterns that could represent a threat for the organisation. However, organisations must be mindful of employees’ right to privacy, considering that the boundaries between personal life and work life are often blur and not well demarked.

Mutual trust between employer and employees is the key to implement an effective and balanced secure environment, be transparent about the control environment and demonstrate a fair and balanced approach will lead the employees to follow and obey the security policies, while if the control environment is too oppressive the workforce may be distracted and distressed and leave in fear.

To be effective and efficient in their business propositions, organisations extensively use third parties, which are now considered strategic partners, and more often offshore offices and processes, to exploit labour arbitrage, in developing countries

The legal aspect is very critical for global organisations which want to implement and roll out employee monitoring programmes across all locations where they have employees or contractors accessing their network and utilising the company’s assets.

Organisations must be aware that the legal considerations for employee monitoring will vary from organisation to organisation and specific issues will arise depending on the nature of the organisation undertaking monitoring and the risks it is trying to mitigate