An insider is typically an employee of an organisation that has authorisation to access a company system or confidential information, and through such authorisation has the potential to intentionally or unintentionally disclose, delete or modify such information or cause a denial of service to the information system.
Although malicious acts by insiders are rare, the potential for insiders to cause disruptive action, even if unintentionally, can have detrimental effects on a business.
In order to appropriately mitigate insider threats it is key to:
- Carry out pre-employment security checks on employees
- Implement an appropriate information security policy including robust access controls and account management policies and procedures
- Promote a strong security culture across the organisation
- Deploy information and communications technologies that facilitate the ongoing logging and monitoring of employee activity
As part of the Cyber Security Malta, Tech.mt collaborates with the Malta Information Technology Agency (MITA) and the Malta Digital Innovation Authority (MDIA) to deliver educational video episodes about Security in the Digital Economy towards a safer future.