IDG Contributor Network: Insider risk management – who’s the boss?

CSO Online Security

Security / CSO Online Security 17 Views 0

Because the saying goes, “a home divided towards itself can't stand.” Similarly, an insider danger management program or an insider menace program (ITP) may even fail and not using a clearly defined chief. Too typically, corporations fail to nominate a pacesetter out of a “workforce strategy” mentality or out of deference to present administration fiefdoms. The result of putting everyone in charge is that no one is in cost.

This doesn’t require an insider menace “czar” with complete management and veto authority over all issues associated to insider danger management. What is required, nevertheless, is an individual who's finally chargeable for fostering collaboration across features, bolstering capabilities, and measuring and reporting progress to management. The federal government refers to this position because the “senior official” answerable for managing insider menace. In corporate America, this official could also be any of the following: CRO, CSO, CISO or CAO.

To read this article in full, please click here