Insider Risk

7 Steps to Building an Insider Threat Program

Since you’re reading this guide, it’s likely you recognize the threat insiders pose to an organization and the need to proactively build a plan to monitor, detect, and respond to potential and active threats. Insiders pose a real threat – 28% of data breaches are perpetrated by insiders (1), and institutional fraud is almost always an insider(2). With 53% of organizations experiencing at least one insider attack within the last 12 months(3), it’s appropriate for organizations to begin down the path you’ve chosen and build out an Insider Threat Program.

This kind of program requires shifts in corporate culture, corporate communications, hiring and firing processes, and a daily concern that any employee – even those you believe are trustworthy – can, at any moment, become a threat.

This Getting Started brief provides some high-level guidance around the steps necessary to implement an Insider Threat Program (ITP) to proactively identify potential and active threats, as well as to appropriately respond should a threat arise.

Get Instant access

Employee Monitoring Resources

2024 Insider Risk Preparedness Checklist

2024 Insider Risk Preparedness Checklist

Odds are that your organization will experience at least one threat in 2024, if not more than one. IBM estimates that a single threat costs an organization an average of $4.35 million, not to mention the work to contain and clean up, and the potential damage to the...