Sergio Galindo has over 26 years of professional management experience, 18 of them in the financial industry. He currently occupies the role of President and Chief Operating Officer at GFI Software, a company that builds affordable and easy-to-use IT solutions that enable businesses to discover, manage, and secure their networks.
"It would be very easy to point the finger and say that..."
Insiders are more of a threat to a company’s data security than outsiders are or vice versa. The truth is that security is more of a process rather than a one-time solution, and when protecting a company’s data assets it is important to consider both insiders and outsiders.
For businesses this is a never-ending battle. With outsider threats companies need to protect themselves from the unknown, constantly filling holes in the wall, yet with insider threats they need to focus their efforts on keeping their employees from shadow IT, making sure they don’t go where they aren’t supposed to.
The best approach is to implement different layers of security. When it comes to insiders, start with background checks, implement a policy of least privilege, and review and revoke data access privilege regularly. Implement role based access control for access to any key data, this, while ensuring there is logging, capturing both successes and failures. Using data loss prevention software, businesses can filter internet traffic, prevent critical data from being mailed offsite, and protect end-points from being used maliciously.
As for outsiders, a solid patch management strategy and a periodic vulnerability assessment are one of the best lines of defense against outside attackers, but again it is important to have different layers of security. Anti-virus solutions, network behavior analysis, and log monitoring are just a few of the options available.
Source: 47 Security Experts weigh in the issue: https://digitalguardian.com/blog/insider-outsider-data-security-threats
More articles that maybe of interest: