In recognition of September’s Insider Threat Awareness Month, here are some insights from Ryan Sherstobitoff, Chief Threat Intelligence Officer at SecurityScorecard.
“Insider Threat Awareness Month serves as a timely reminder that some of the most damaging breaches often originate from within. Whether it’s a misstep by a well-meaning employee or a malicious actor with privileged access, insider threats often bypass traditional defenses and go undetected for weeks. This is especially true in hybrid environments where visibility is fragmented across endpoints, cloud services, and third-party vendors.
To combat this threat, organizations should prioritize continuous monitoring and behavioral analytics. This means having tools in place to watch for unusual activity, such as an employee accessing sensitive data outside of normal work hours or attempting to bypass security controls. Organizations must also have a clear, documented incident response plan for insider threats, including who to contact and what steps to take. This plan should involve human resources, legal, and IT teams. Lastly, a crucial step is to encourage employees to report suspicious behavior via a clearly defined anonymous process.
That effort must extend to the systems and vendors with access to your own environment, where risk often hides in plain sight. Surfacing these signals early helps prevent escalation into full-blown incidents.
As insider threats grow more complex, blending human error with credential misuse and social engineering, smarter detection methods are essential. Insider Threat Awareness Month is not just about awareness, it is a call to action. The organizations that act now will be best equipped to protect their data, their people, and their reputation.”
Like this:
Like Loading...
Related
This entry was posted on September 1, 2025 at 9:11 am and is filed under Commentary. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
September Is Insider Threat Awareness Month
In recognition of September’s Insider Threat Awareness Month, here are some insights from Ryan Sherstobitoff, Chief Threat Intelligence Officer at SecurityScorecard.
“Insider Threat Awareness Month serves as a timely reminder that some of the most damaging breaches often originate from within. Whether it’s a misstep by a well-meaning employee or a malicious actor with privileged access, insider threats often bypass traditional defenses and go undetected for weeks. This is especially true in hybrid environments where visibility is fragmented across endpoints, cloud services, and third-party vendors.
To combat this threat, organizations should prioritize continuous monitoring and behavioral analytics. This means having tools in place to watch for unusual activity, such as an employee accessing sensitive data outside of normal work hours or attempting to bypass security controls. Organizations must also have a clear, documented incident response plan for insider threats, including who to contact and what steps to take. This plan should involve human resources, legal, and IT teams. Lastly, a crucial step is to encourage employees to report suspicious behavior via a clearly defined anonymous process.
That effort must extend to the systems and vendors with access to your own environment, where risk often hides in plain sight. Surfacing these signals early helps prevent escalation into full-blown incidents.
As insider threats grow more complex, blending human error with credential misuse and social engineering, smarter detection methods are essential. Insider Threat Awareness Month is not just about awareness, it is a call to action. The organizations that act now will be best equipped to protect their data, their people, and their reputation.”
Share this:
Like this:
Related
This entry was posted on September 1, 2025 at 9:11 am and is filed under Commentary. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.