Monday, March 05, 2007

SearchSMB Article on Insider Threats

My article on insider threats came out today on SearchSMB in their Weekly Tech Advice newsletter.

I took the approach that there are three approaches to this problem: physical security, administrative security and technical controls.

There's been a lot written about this lately, and the conventional approach is to monitor the activity of employees on the network. I'm not discounting the importance of employee monitoring. But my approach was geared to SMBs, which don't have the cash or the people to do lots of electronic hall monitoring and babysitting.

Two other good sources of information on the insider threat are on the CERT web site and the Insider Risk Management Guide at SearchSecurity.


Post a Comment

<< Home