What is the best Insider Risk Management solution?

SecuritySecurity Strategy & Roadmap
5k views7 Upvotes22 Comments
Sort By:
Oldest
CISO in Software2 years ago
I think first it helps to be clear on your insider risk issues. So look at the profiles or personas or relevant roles in your business and then work out what your insider risks are. Once you know the risks, you can get clear on what controls or mitigation strategies you need to put in place or what gaps you have to fill. Then you can look at solutions and tools to help.
Associate Vice President, Information Technology & CISO in Education2 years ago
The tool will be the least of your worries. Look at developing the policies and procedures around insider risk management. Also, be sure to inform your leadership on the difference between insider risk and insider threat.

Once you have defined these things, you can look at tools like Proofpoint ITM, Dtex, Vectra, etc. to name a few.
CIO in Software2 years ago
I have evaluated ZScalar in past. Nothing wrong in tool but given our size and business, we chose to go positive reinforcement of training and awareness - if we still believe that insider risk management solution is needed, we will probably go for one of these. I would have definitely implemented in my last role of healthcare where I was responsible for HIPAA or consultancy role before that where I had huge chunks of HR data accessible to my staff 
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
Director of IT in Healthcare and Biotech2 years ago
The best is what is right for your organization. Do you prioritize cost, cutting edge technology, reporting, ease of implementation or management? Only you can answer your question, but you always have to define your needs and wants, then you can find out what is out there and what is the best fit.
IT Director in Travel and Hospitality2 years ago
It’s definitely a topic you need to approach and tackle from multiple angles.
For me, a combination of meaningful training and consistent positive reinforcement, great processes/policies,  together with a software solution (like zscaler) are key to insider risk management.

Content you might like

What’s on your IAM roadmap for the next 18-24 months?

Identity & Access Management (IAM)Threat & Vulnerability ManagementSecurity Strategy & Roadmap
Director of IT in IT Services4 days ago
Implementation of Zero trust architecture, its modules across the organisation is a priority for us. So, we will be implementing zero trust strategies in IAM, inline with overall strategy.
1.4k views1 Comment

What's a greater concern for returning to the office? Comment how you are prioritizing...

People & LeadershipStrategy & ArchitectureCloud+29 more

Human Factors (fears, mental health, physical spacing)85%

Technical / IT Factors (on-premise tools, pivoting back away from remote)14%

3.7k views3 Upvotes2 Comments

Can anyone share recent or planned improvements when it comes to digital identity management? How are you optimizing those processes/tools?

Identity & Access Management (IAM)Threat & Vulnerability ManagementSecurity Strategy & Roadmap
Senior Solution Architect in Finance (non-banking)22 days ago
We've moved from an in-house system to one of the top 2 Digital Identity management solutions/suppliers, this was essential to keep up with the evolving digital identity management landscape.   
What we've learned is that ...read more
1
Read More Comments
1k views2 Comments

As I evolved my technology career, I relied on many models like ITIL, OSI, NIST, PMBOK, etc. What are the new models that better reflect the new ways of working? Does anyone still use any of the models I mentioned?  What do you all think I should learn more about in this regard? 

Security Strategy & RoadmapOperations ManagementSecurity Operations Center (SOC)+1 more
Founder in Services (non-Government)23 days ago
New Ways of Working are my jam, does this reply have a character limit?

First, I'll share that when it comes to new ways of working it's less about models and more about changing your view of the world.   While there ...read more
1 2 Replies
1.2k views3 Comments

What is your organization’s current status for implementing endpoint security to protect O365 on mobile devices?

End-User Services & CollaborationSecurity & GRCDevice Management+14 more

Implementation complete23%

Implementation in progress54%

Planned within the next 12 months12%

Not planned7%

Not enabling O365 on mobile2%

View Results
2.4k views2 Upvotes