TIme to get DICE'd

ESPECIALLY NOW!!

Get a DICE Briefing

CLICK DICE

Facebook Star Youtube Twitter Linkedin
Search
Close this search box.
Join DICE list

Insider Threat Awareness Growing But Action Lacking

(HStoday) Although the insider threat is on the radar for most organizations, many are repeatedly failing to take the necessary steps to prevent an attack, according to a recent report sponsored by SpectorSoft and conducted by the SANS Institute.

The report, Insider Threats and the Need for a Fast and Directed Response, surveyed 772 IT security professionals in a broad range of industries—including government, technology, finance, education, and healthcare, among others—between December 2014 and January 2015.

The results revealed organizations are increasingly aware of the salient nature of the insider threat, but struggle to deal with it. While almost three-fourths of organizations acknowledge that the accidental and malicious insider poses a threat to their organization, most put themselves at severe risk for significant data loss by being unprepared to protect themselves against insider threats.

The survey results found 44 percent of respondents are unaware of how much they spend on solutions that mitigate insider threats, and 45 percent do not know how much they plan to spend on insider threat technology in the next 12 months. Moreover, 32 percent have no ability to prevent an insider attack. . . . (read the rest)

– – – –
From the Executive Summary of the report:

As breaches continue to cause significant damage to organizations, security consciousness is shifting from traditional perimeter defense to a holistic understanding of what is causing the damage and where organizations are exposed.

Although many attacks are from an external source, attacks from within often cause the most damage. This report looks at how and why insider attacks occur and their implications.
Why focus on insiders? Because they may have unfettered access to sensitive data, as well as the means, methods and motives to access information, virtually undetected.

The results of the SANS survey on insider threats show that organizations are starting to recognize the importance of protecting against the insider threat but struggle to deal with it; as one might expect, larger organizations are more likely to have provisions for responding to such threats.

Key findings include:

  • Almost three-quarters (74%) of respondents are most concerned about negligent or malicious employees who might be insider threats. The FBI and Department of Homeland Security agree that insider threats have increased and that such threats pose a serious risk.
  • The pattern of survey respondents recognizing the problem while failing to implement solutions that efectively deal with it does not bode well. This yawning gap between claimed priorities and resources available for budget and planning is a playground for attackers.
  • This is only the tip of the iceberg; many insider threats go undetected, and some are only detected by accident
  • Over 68% of respondents consider themselves able to prevent or deter an insider incident or attack. Half (51%) believe their prevention methods are “efective” or “very efective.” Yet 34% of respondents indicated that they have still suffered actual insider incidents or attacks, some of which were costly.
  • Almost one-fifth (19%) of respondents believe that the potential loss from an insider threat is more than $5 million; another 15% valued such loss at $1 to $5 million. Immeasurable costs include brand and reputation damage and related costs not tracked in this survey.
  • One-fifth (20%) of respondents indicated they will increase their spending on the issue to 7% or more next year, demonstrating more awareness and focus on this area

The survey also showed how organizations approach insider threats, and this report includes our recommendations for improving incident response (IR), based particularly on these observations:

  • Most respondents focus on non-technical controls and awareness.
  • Malicious insiders are a greater concern than accidental insiders are.
  • Attack detection takes too long.

With this information, readers should be better prepared to address the threats insiders pose.

Insider Threats and the Need for a Fast and Directed Response (pdf)

Picture of Ray Semko
Ray Semko
Ray Semko, the D*I*C*E Man, is a professional public speaker, motivator, and national security educator who is the creator of Defensive Information to Counter Everything (D*I*C*E) security awareness briefings.
Follow Ray
Facebook Twitter Youtube Linkedin
Testimonials
“Your presentations were top notch and both captivating and interesting. You are the best public speaker I’ve ever encountered – quite inspiring and motivating too!”
NCMS Attendee
“I STILL remember your visit to my command back in the turn of the millennia. Thank you for leaving a life-long impression on me. You are truly one of the best speakers of I have witnessed…and I’ve seen a lot.”
Rich NAWC-TSD
“I was blown out of the water with Ray Semko presentations. I made sure I attended all three presentations. What a dynamic speaker. It send chills down one’s back to realize what is really happening in the United States security after you listen to Ray.”
EmployeeL-3 Communications
“You are the most honest and sincere, energetic speaker I have ever come across in my career, whether HR or Security! You truly are the best!”
Corporate Vice PresidentSimventions
“I have seen Ray Semko LIVE, twice. NOBODY sleeps through his seminars. He can and will wake up your audience and keep them riveted during the entire presentation. He is spectacular.”
Dale FSO, CTS
“This is without a doubt the best briefing I have ever attended. Very dynamic and informative as well as entertaining. A DICE Security Awareness presentation should be a must for all government agencies.”
JohnMDA
“I was completely enthralled the first time I saw Ray give his incredibly motivational and inspirational briefing. Honestly, anything less than his full 2-hour briefing is a disservice to the attendees at one of Ray’s briefings.”
Corporate Security OfficerCSC
“This was the BEST course I took all year. I could have listened to this guy talk all day long and NEVER get bored.”
EmployeeRaytheon
"On a scale of 1 to 10, this DICE briefing was a 20!"
Corporate CEO
“I’ve attended a live presentation by Mr. Semko several years ago and found the experience unequaled. I believe an event by the DICEMAN would have incredible return on investment.”
AttendeeNavy
“I was at your DICE brief and thought it was the best brief I have gotten since I have been in the Marine Corps.”
US Marine
“You held my attention like a magnet and I wouldn’t have missed it for any reason.”
Security ManagerFt. Monmouth
“We need to keep this country FREE and you are the man to do it by your briefings. Everyone else’s briefings are boring, but you hold people’s attentions and tell us like it is! THANK YOU AGAIN for your dedication to the freedom of this country!”
AttendeeWright-Patterson AFB
Previous
Next
Inquire about having Ray Semko come speak to your group.
JOIN THE DICE MAILING LIST
CI/SECURITY ARTICLES
Threats are Out There

Powerful, memorable security awareness briefings since 1989.

Facebook Twitter Youtube Linkedin

Ray Semko

Security Educator

Public Speaker

Motivator

National Security Expert

Request a briefing

“On a scale of 1 to 10, this DICE briefing was a 20!”–Corporate CEO

More Feedback from Attendees
Copyright © 2024 Ray Semko: The D*I*C*E Man. All rights reserved.
Website by CJKCREATIVE.COM