Internal threats seem very difficult to predict/prevent, since the attacker has access to your organization's systems....
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
Are there tools available that trigger alerts about unusual user behavior on a network for example? What else can organizations do to prevent internal network attacks?
Most IT security professionals will agree that insider threats are likely to be more severe in their impact than attacks from outside an organization. In addition to deploying network monitoring devices, such as intrusion detection (IDS) and prevention systems (IPS), assume that there will be attempts by employees to make unauthorized transactions on your systems that could result in fraud, theft of information and other illegal acts.
Increase diligence and proactivity with network monitoring; discuss the need for background checks with human resources; discuss the need for additional, in depth background checks for employees in potentially sensitive areas; provide more visible evidence of security monitoring activities; review and update security policies and procedures to deal with insider threats; and provide periodic remedial (mandatory) training of employees in security policies and procedures.
Dig Deeper on Disaster Recovery Planning-Management
Related Q&A from Paul Kirvan
You should be able to justify the need for a BC/DR plan. But here's what you can do if you fail to get management buy-in and you still want disaster ...continue reading
While it's always safer for businesses to have properly funded DR plan testing, there are ways to assess your plan even when the data storage budget ...continue reading
For those organizations that believe 'It will never happen to me,' options to a formal business continuity/disaster recovery plan do exist if the ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.