Threat And Vulnerability Discussion
There are several definitions of what an ‘insider threat' is such as: someone who is malicious to someone who inadvertently gives a hacker their credentials or in other words, does not intentionally cause harm but they do.
Another definition is: "an insider threat is a malicious hacker (also called a cracker or a black hat) who is an employee or officer of a business, institution, or agency. The term can also apply to an outside person who poses as an employee or officer by obtaining false credentials. The cracker obtains access to the computer systems or networks of the enterprise, and then conducts activities intended to cause harm to the enterprise."
With this said, what can a company do to mitigate insider threats to prevent them from negatively affecting critical infrastructure and assets? If you work for an organization, what is in place to mitigate insider threats? Do you think organizations should encourage workers to 'anonymously report on others' who they suspect of suspicious insider threat behaviours? How could an organization manage this without it destroying the culture?
The response should include a reference list. Double-space, using Times New Roman 12 pnt font, one-inch margins, and APA style of writing and citations.