BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Who is To Blame When An Insider Breach Occurs?

Posted February 6, 2012    Peter McCalister

As I’ve waded through the hundreds of published insider breaches from just the last two years, what was a clear recurring theme was that of the vagaries of human nature. Not meaning to wax poetic, but it was always an individual who misused their own, or some other insider’s, privileged access authorizations to IT systems to their own devices and/or gains.

That begs two questions:

What sets these people on their path to misuse of privilege?
Are they personally responsible or is the organization’s lack of controls partially responsible as well?

As I have pointed out many times—at the intersection of people, processes, and technology that make up the engine of modern business—it’s human nature that is the weakest link. And, all too often, it’s the tendency of almost the entire IT industry—vendors, analysts, and press—to ignore this.

Put another way, you can’t rely on everyone being a saint or competent all of the time. It’s not just malicious malcontents intent on destroying the system who can cause havoc, but also the negligent, misinformed, and down-right nosey who can compromise sensitive data. In all cases, it’s more often than not the case that such people have way too much privilege access— admin rights on the desktop, root password on the server—for the role they are required to play.

Indeed, when technology is to blame, it’s not always the technology company’s use; it’s the failure to recognize the importance of technology, such as privileged identity management (PIM) systems, which can restrain over-privileged users without hampering productivity, which is at fault. With increasing costs arising from data breaches, including cleanup costs, as well as customer churn due to diminished trust, it makes sense not to rely on trust alone when it comes to employee and third-party access to sensitive data.

Leave a Reply

Additional articles

CyberResiliency

6 things I like about Gartner’s Cyber Resiliency Strategy

Posted August 27, 2015    Nigel Hedges

There were 6 key principles, or recommendations, that Gartner suggested were important drivers towards a great cyber resiliency posture. I commented more than once during the conference that many of these things were not new. They are all important recommendations that are best when placed together and given to senior management and the board – a critical element of organisations that desperately need to “get it”.

Tags:
,
powerbroker-difference-1

Why Customers Choose PowerBroker: Flexible Deployment Options

Posted August 26, 2015    Scott Lang

BeyondTrust commissioned a study of our customer base in early 2015 to determine how we are different from other alternatives in the market. What we learned was that there were six key differentiators that separate BeyondTrust from other solution providers in the market. We call it the PowerBroker difference,

Tags:
, ,
Mac-Security-Enterprise

On Demand Webinar: Security Risk of Mac OS X in the Enterprise

Posted August 20, 2015    BeyondTrust Software

In the last several years, Mac administrators have come to realize that they may be just as vulnerable to exploits and malware as most other operating systems. New malware and adware is released all the time, and there have been serious vulnerabilities patched by Apple in the past several years, some of which may afford attackers full control of your systems.

Tags:
, ,