By Isaac Kohen, Founder and CEO, Teramind
While your customers are reacting to insider threats by implementing pre-employment screenings, security education and creating a series of policies to execute in the event of a leak, these are all reactive measures. The opportunity for security firms and advisers is in preventative tools and methods that organizations can use to prevent insider threats from harming the business in the first place. This requires behavioral analysis and an understanding of people, not just new technology.
So how large is this opportunity? According to Bloomberg Government, it is a $1 billion market for public-sector organizations. And with the private sector scrambling to remain in compliance to maintain government contracts, there is no better time than right now to provide a wealth of services to both public and private organizations seeking to insulate themselves from the risk of data breaches.
Channel partners need to understand three core aspects before seizing the opportunity in front of them. These are: What do channel partners know, what do clients need, and where are the information gaps? Said another way, this means continuous topic analysis (security), industry-context analysis, and nudging companies beyond compliance.
As of 2017, insider threats still remain the leading cause of data breaches, according to analysts. The insiders can be either malicious in intent or accidentally cause a breach through negligence. Insiders can be on-site employees, remote workers and high-privilege-access employees. What should be emphasized is that an insider is a person, not only a technical issue. The human factor of security is able to overcome traditional means of information security, such as passwords, firewalls or key cards. Even non-privileged users are able to overcome these hurdles.
As technology was the focus of insider-threat mitigation for a while, many organizations have become very aware of the importance of behavioral analysis and detecting the indicators of a potential insider threat. One can quickly get up to speed by reviewing the Common Sense Guide to Mitigating Insider Threats from CERT. Baselines need to be established so it becomes easier to detect sudden changes in behavior from insiders.
With an understanding of current knowledge and best practices in place, channel partners can quickly identify some needs of clients before they even get into the details of their situation. Additionally, possessing the latest knowledge on insider threats will position channel partners as experts in the space of information security, because of the continued focus on this leading threat across sectors. Keeping your firm up-to-date will keep you ahead of competition when pitching or engaging clients. This also means following information security journalists, top bloggers, experts and analysts to understand what is currently happening in the space where your firm operates.
When engaging a client, channel partners do not speak to an organization; channel partners speak to people with their own roles and anxieties. These cannot be generalized, or else an effective solution will not be produced for them. Trust is the critical element here. While CIOs have their concerns, it is important to be able to …