Security Expert: When an insider goes rogue, the threat is of a fundamentally different nature. On a technical level, it is almost impossible to guard against that threat. You minimize that threat through thoughtful hiring.
Jonathan Pollard is a competition lawyer based in Fort Lauderdale, Florida. He has a nationwide practice representing both plaintiffs and defendants in non-compete and trade secret litigation.
"The biggest threat to any company's data security is..."
Insiders, hands down. With respect to external threats, you can take certain steps to secure your data and minimize the risk of an external attack (malware, hackers, etc.). You can never be 100% safe but you can have a very high confidence interval. Internal threats are a totally different ballgame. In an organization of any size, the internal threat takes on two dimensions. First, negligence by insiders leading to a data breach. You can combat this to some extent through training and various safeguards. A second and more difficult problem is an insider going rogue. In all of the prior threat scenarios, corporate actors are trying to protect the data but failing for whatever reason (external attack, malware, negligence, etc.). But when an insider goes rogue, the threat is of a fundamentally different nature. For instance, suppose an insider who has access to critical data decides to steal that data and go to an industry rival. On a technical level, it is almost impossible to guard against that threat. You minimize that threat through thoughtful hiring. And if it happens, you immediately go into damage control mode and get an injunction.
Source: 47 Security Experts weigh in the issue: https://digitalguardian.com/blog/insider-outsider-data-security-threats
More articles that maybe of interest: