October 24, 2016 By Nick Oropall 2 min read

Stay Out of the Headlines With Identity Governance and Intelligence

It seems not a day goes by without another news story about a major security breach. Incidents that garner significant media attention include cyberattacks from overseas fraudsters, hacktivist groups and domestic actors. These breaches paint an alluring picture of good versus evil, like a spy movie or something similar to what we would see on television.

Insider threats — which, according to IBM’s “2016 Cyber Security Intelligence Index,” are responsible for 60 percent of all security incidents — are just as problematic but often take a back seat in terms of mainstream media attention. After all, the visual of a criminal in a hooded sweatshirt hammering away at a keyboard is far more intriguing than that of a contractor who was accidentally given too much access.

A Matter of National Security

Keeping the bad guys out is critical, but we’ve recently seen countless examples of good guys — insiders — exploiting access to sensitive materials, intentionally or inadvertently. Authorities arrested a contractor for the National Security Agency (NSA) in August for stealing classified government information, for example. The information was considered top secret, meaning that it could, if disclosed, “cause exceptionally grave damage to the national security,” CNN reported.

Investigators haven’t yet determined the contractor’s motivation for stealing the documents, but we can all agree that even an accidental leak can be disastrous. It’s critical for security leaders to understand what each user has access to. They should grant employees levels of access sufficient to perform their jobs — nothing more.

Ensuring Proper Access

An effective identity governance and intelligence solution provides users with proper access from the start to the end of the user life cycle. It also ensures that all access is approved and recertified throughout the life cycle until properly deprovisioned.

The ability to identify potential risky access and risky users is paramount. An identity governance and intelligence solution that can analyze all user access and help to prioritize risk is a step in the right direction toward preventing insider threat attacks.

Download the white paper: How to design an IAM program

 

More from Identity & Access

Another category? Why we need ITDR

5 min read - Technologists are understandably suffering from category fatigue. This fatigue can be more pronounced within security than in any other sub-sector of IT. Do the use cases and risks of today warrant identity threat detection and response (ITDR)? To address this question, we work backwards from the vulnerabilities, threats, misconfigurations and attacks that IDTR specializes in providing visibility into. As identity threat detection and response (ITDR) technology evolves, one of the most common queries we get is: “Why do we need…

Access control is going mobile — Is this the way forward?

2 min read - Last year, the highest volume of cyberattacks (30%) started in the same way: a cyber criminal using valid credentials to gain access. Even more concerning, the X-Force Threat Intelligence Index 2024 found that this method of attack increased by 71% from 2022. Researchers also discovered a 266% increase in infostealers to obtain credentials to use in an attack. Family members of privileged users are also sometimes victims.“These shifts suggest that threat actors have revalued credentials as a reliable and preferred…

Passwords, passkeys and familiarity bias

5 min read - As passkey (passwordless authentication) adoption proceeds, misconceptions abound. There appears to be a widespread impression that passkeys may be more convenient and less secure than passwords. The reality is that they are both more secure and more convenient — possibly a first in cybersecurity.Most of us could be forgiven for not realizing passwordless authentication is more secure than passwords. Thinking back to the first couple of use cases I was exposed to — a phone operating system (OS) and a…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today