Day 2

The Elephant in the Room: addressing insider threats. Lessons and good practices from Dutch organizations

Session complexity:
15:00 - 15:25

When addressing security issues, external threats seem to be the sole point of focus. We often miss the fact that our own employees, colleagues or business partners – people whom we trust – could also pose a significant threat to organizations. This threat arises from their authorized access to information and systems, making it challenging to detect malicious actions. And that is the tricky part: in order for an organization to get work done, access and trust is foundational. Insider threats can lead to the leakage of data, financial losses and reputational damage. Mitigating the risks of insider threat is an absolute must to enhance your cyber resilience.

One of the main goals of the NCSC is to connect parties, knowledge and information. Combating the risk of insider threats is not just something learned from theory. At the NCSC we wanted to mobilize shared and practical knowledge from our partners in order to get a comprehensive view on how to manage insider threats in organizations. We asked different Information Sharing and Analysis Centers (ISACs) how they do this and what issues arise when developing an insider threat programme. In our talk we will elaborate on their combined insights using the NIST Cybersecurity Framework 2.0. By understanding the risks posed by insiders and knowing how to manage them, will advance your organisation’s (cyber) resilience.