The role of the CISO has dramatically evolved in recent years due to the increased interconnectivity of business networks, with more people having access to company data than ever before
Today, cybercriminals have scaled their attacks as demonstrated in wide scale data breaches this year such as the NSA and Equifax. To thwart such attacks, CISOs are turning focus inward to data security of the greatest risk to their organisations – insiders.
According to a Ponemon report, insider threats cost organisations $4.3 million dollars a year on average. In fact, the IBM X-Force Cybersecurity Report cites that 60% of all cyber security attacks are caused by employees inside an organisation, 44.5% being malicious insiders and 15.5% being inadvertent actors.
When it comes to defending against today’s most advanced cyber threats, there are some must have capabilities a CISO must have to protect their organisation’s data from the inside out:
Who has access?
The first step in protecting an organisation’s data is o protect an organisation’s data, one should first know who has access to it. Business networks now include third-party contractors and business partners who may have unnecessary access to company data. CISOs must have the capability to discover and centralise unknown or poorly known users that may pose threat to the organisations data. Once identified, users can now be governed through policy, activity, monitoring, and training.