BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

The New Twist On Insider Threats

Posted September 6, 2011    Peter McCalister

Just when an insider breach couldn’t be any worse for all parties involved – the data has been compromised, customers are upset, the company is embarrassed, it’s a lose-lose for everyone – the Financial Industry Regulatory Authority (FINRA) steps in with a new twist. A fine.

Recently, an employee of Citigroup managed to steal almost $750,000 from 22 customers during the course of eight years, leading FINRA to step in and fine Citigroup $500,000 for failing to keep track of this malicious employee.

What this tells us is that yes, companies need more thorough continuous monitoring practices and need to think more critically about how existing implementations of database activity monitoring (DAM) tools can be better utilized to track user behavior. They also need to improve the way that DAM tools are linked to identity management tools, leading to better tracking of user behavior across systems. But at the end of the day, the real lesson to be learned here is that in order to effectively fight the war against insider threats, IT must be backed by supervisory control.

There isn’t a simple solution to the problem of insider threats, but starting with the right database activity monitoring and privileged identity management policies is a good jumping off point for companies looking to avoid the hassle, the humiliation and now, the fines associated with insider threats.

Leave a Reply

Additional articles

How-BeyondInsight-Malware-Analysis-Works

Death, Taxes and Malware: BeyondInsight 5.5 Adds Malware Analysis

Posted May 6, 2015    Chris Burd

Death, Taxes and Malware: BeyondInsight 5.5 Adds Malware Analysis. BeyondTrust combats advanced persistent threats with new capabilities in BeyondInsight IT Risk Management Console. BeyondInsight Clarity threat analytics capability incorporates malware analysis to identify APTs and other hidden threats.

Tags:
, , , ,
pbps-blog3

8 Reasons Customers Switch to Password Safe for Privileged Password Management

Posted May 5, 2015    Scott Lang

It’s clear that privileged password management tools are essential for keeping mission-critical data, servers and assets safe and secure. However, as I discussed in my previous post, there are several pitfalls to look out for when deploying a privileged password management solution. At this point, you may be wondering how BeyondTrust stacks up.

Tags:
, , , , , , , ,
medicalbreach

The Magnitude of Cybersecurity Problems in United States Healthcare

Posted April 30, 2015    Dr. Mansur Hasib

Dr. Mansur Hasib discusses healthcare compliance and why healthcare records are far more valuable to the modern cyber criminal than any other data.

Tags:
, , ,