International Cyber Expo International Cyber Expo
  • About Us
Tuesday, 14 July, 2026
IT Security Guru
International Cyber Expo
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Businesses feel the insider threat, as 9 per cent feel safe

by The Gurus
April 3, 2014
in Editor's News
Share on FacebookShare on Twitter

Only nine percent of 500 IT decision makers feel that they are safe from the “insider threat”!
 
According to research by Vormetric, 42 percent acknowledge that it is ‘privileged users’ that pose the biggest risk to their organisation, while 47 percent admit to finding insiders more difficult to detect.
 
However with 91 percent of the respondents admitting to feeling unsafe, Alan Kessler, CEO for Vormetric, told IT Security Guru that he could not believe that the nine percent were serious. “We found European users monitored their networks on a regular basis compared to others, but the exfiltration of data is what they focus on.”
 
Andrew Kellett, principal analyst at Ovum, who conducted the study, said that he suspected the nine percent were organisations who felt themselves to be safe and, when asked if they were in denial, Kessler said that these people likely want business technology to be outstanding, when really the people with access are not the most trusted.
 
“If you know the adversary and have an entity who wants your information, they will get it and they are probably inside, and the economic situation is one that if it is more difficult to break into, and your IP is better than another company’s, it has got to be better for you,” he said.
 
Commenting, Adrian Davis, EMEA managing director of (ISC)2, told IT Security Guru that one of the big problems is once an attacker is inside, they have bypassed the security technology and most are designed to keep people out. “Once you are behind the technology, there tends to be much less control,” he said. “Snowden was not critical of the NSA technology, he was critical of management. He was a contractor and no one managed him and there were no reporting lines, he looked at the information and no one managed him.
 
“You need to understand what people are doing and what they see, as without that technology is much less effective. It is not only technology, but people and process. With insider threat, if someone is working for you, they have got privileges and opportunity to get access to information, so where does the motivation come from? What is the trigger?”
 
The survey also found that 66 percent of respondents are planning to increase their IT security budgets as a direct response to this risk. Paul Ayers, VP EMEA at enterprise data security firm Vormetric, said that there are variants in Europe and, in the UK, 63 percent suggested an increase in spending.
 
Kellet said: “The UK felt comfortable in the situation and the results show that the US is a little more paranoid. We are a little better in the UK and at the moment organisations do not feel as likely to be hit by penalties.”
 
Asked if the increase was due to the Edward Snowden stories of last summer, Ayers said that “paranoid” was an interesting term, as awareness can help prevent threats as it raises knowledge to the board.
 
Kessler said: “There is a major breach every week and a clear definition of the insider threat. The likelihood of working with contractors and business partners extends your perimeter to a wider group of users and access requirements”
 
Kellet said: “There is a lot of working to be done to make sure you have access to those who understand how access works and how to make access very hard.”

Tags: Insider Threat
ShareTweet
Previous Post

Training up the troops

Next Post

Sevenoaks School upgrades to WatchGuard unified threat management platform

Recent News

Forescout Uncovers AI Assisted Phishing Campaign Using Fake eCards

Forescout Uncovers AI Assisted Phishing Campaign Using Fake eCards

July 14, 2026
Lidl Confirms Data Breach After Third-Party IT Provider Hack

Lidl Confirms Data Breach After Third-Party IT Provider Hack

July 14, 2026
Black Duck Adds AI-Powered Triage and CRA-Ready Checks to Coverity Static Analysis

Black Duck Adds AI-Powered Triage and CRA-Ready Checks to Coverity Static Analysis

July 14, 2026
AI Appreciation Day: Celebrating Progress, Embracing Responsibility

AI has crossed from assistant to operator, Check Point research warns

July 14, 2026

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2026 IT Security Guru - Website Managed by Dessol

  • About Us
Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2026 IT Security Guru - Website Managed by Dessol