What organizations can do to prevent internal network attacks

Internal threats seem very difficult to predict/prevent, since the attacker has access to your organization's systems. Are there tools available that trigger alerts about unusual user behavior on a network for example? What else can organizations do to prevent internal network attacks?

    Requires Free Membership to View

Most IT security professionals will agree that insider threats are likely to be more severe in their impact than attacks from outside an organization. In addition to deploying network monitoring devices, such as intrusion detection (IDS) and prevention systems (IPS), assume that there will be attempts by employees to make unauthorized transactions on your systems that could result in fraud, theft of information and other illegal acts.

Increase diligence and proactivity with network monitoring; discuss the need for background checks with human resources; discuss the need for additional, in depth background checks for employees in potentially sensitive areas; provide more visible evidence of security monitoring activities; review and update security policies and procedures to deal with insider threats; and provide periodic remedial (mandatory) training of employees in security policies and procedures.

This was first published in October 2013

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: