Mitigating Insider Threats

Abstract

The biggest data breaches that occurred in the past few years, regardless of the profile or size of the company targeted, have been the results of human error or inside jobs. Blocking external attacks and access is relevant and vital, but many organizations devote all their resources to this line of defense and ignore the importance of securing their data and operations internally. During this seminar we will discuss the benefits of different cyber security controls and processes that can be used to mitigate internal threats at the application level: access management, logging and monitoring, incident management, system defense, production vs testing environments, proper documentation, change management and risk management.