The Accidental Hacker
When we think of insider threats, we inevitably imagine the likes of a Julian Assange or Edward Snowden, and spectacular leaks of confidential information with vengeful or ideological motivations. But while a WikiLeaks-type threat is well understood, an intense focus on malicious threats risks missing out all the other vulnerabilities which carry huge potential for harm.
Gaining visibility of negligent human behaviours that inadvertently create vulnerabilities - and changing them - must move to the top of the CISO agenda for the foreseeable future.