January 5, 2016 By Christina Thompson 2 min read

Ever hear the expression “don’t let the fox guard the henhouse”? The farmer knows his chickens are valuable and puts them in a safe coop with a lock and a roof, protecting them from external threats such as opossums, cats and hawks.

But what is the farmer doing to protect from within the coop? There are measures the farmer has to take — starting with not inviting the fox inside to be the guard!

Watch Out for the Insider Threat

The threats that companies often overlook come from the inside. While outsiders were found to be responsible for 45 percent of the cyberattacks recorded in 2014, 55 percent of attacks were carried out by those who had insider access to organizations’ systems.

Download the white Paper: Get Smart to Shut Down Insider Threats

The insider threat encompasses not only malicious employees who want to do harm, but also compromised corporate IDs and credentials — for example, a user who inadvertently clicks on a suspicious email attachment that exposes the system (and possibly the corporate network) to malware is an insider threat.

Additionally, trusted third-party contractors also count as an insider threat since they have access and entitlements to systems and data that mirror those of direct employees. These can include electricians, construction workers or other repair personnel who come into physical locations or have access to networks. Abusing this type of third-party access demonstrates that attackers can steal third-party credentials and gain access into networks.

Given the complexity of securing sensitive data against internal and external risks, data security is not a one-and-done event; it’s an ongoing process that must be continuously managed, monitored, enhanced and audited across the entire organization. Data security must be deployed as a process that integrates with other security practices (in particular, identity and access management and vulnerability management) as well as other critical business processes.

How to Form the Security Program

Just like the farmer building a safe environment for his chickens, organizations must build strong security programs to defend and protect against new and emerging threats — such as SQL injection, cross-site scripting and privileged insider breaches, just to name a few — based on the best practices for database security and compliance.

A strong security program can help protect organizations from the external and insider threat by helping them:

  • Prevent data breaches, insider risk, fraud and unauthorized changes to or the destruction of sensitive data;
  • Monitor privileged users such as database administrators, developers, IT administrators, outsourced personnel, etc.;
  • Virtually eliminate the overhead and complexity of native DBMS, big data and file system audit logs;
  • Automate compliance reporting, vulnerability and configuration assessments and data discovery;
  • Encrypt files;
  • Mask confidential data in test, training and development systems;
  • Redact unstructured data in documents, forms and graphics at rest or dynamically.

More from Data Protection

Why safeguarding sensitive data is so crucial

4 min read - A data breach at virtual medical provider Confidant Health lays bare the vast difference between personally identifiable information (PII) on the one hand and sensitive data on the other.The story began when security researcher Jeremiah Fowler discovered an unsecured database containing 5.3 terabytes of exposed data linked to Confidant Health. The company provides addiction recovery help and mental health treatment in Connecticut, Florida, Texas and other states.The breach, first reported by WIRED, involved PII, such as patient names and addresses,…

Addressing growing concerns about cybersecurity in manufacturing

4 min read - Manufacturing has become increasingly reliant on modern technology, including industrial control systems (ICS), Internet of Things (IoT) devices and operational technology (OT). While these innovations boost productivity and streamline operations, they’ve vastly expanded the cyberattack surface.According to the 2024 IBM Cost of a Data Breach report, the average total cost of a data breach in the industrial sector was $5.56 million. This reflects an 18% increase for the sector compared to 2023.Apparently, the data being stored in industrial control systems is…

3 proven use cases for AI in preventative cybersecurity

3 min read - IBM’s Cost of a Data Breach Report 2024 highlights a ground-breaking finding: The application of AI-powered automation in prevention has saved organizations an average of $2.2 million.Enterprises have been using AI for years in detection, investigation and response. However, as attack surfaces expand, security leaders must adopt a more proactive stance.Here are three ways how AI is helping to make that possible:1. Attack surface management: Proactive defense with AIIncreased complexity and interconnectedness are a growing headache for security teams, and…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today