Insider Threat Behavior Factors:A comparison of theory with reported incidents

Asmaa Munshi, Peter Dell and Helen Armstrong 2012 45th Hawaii International Conference on System Sciences

Summary

This paper Identifies the factors for insiders behavior Provides a comparison of academic

research with empirical evidence from reported incidents

Recommends future research directions

Appreciative Comments

The paper identified the need for a holistic approach to encapsulate a broader perspective of the insiders behavior.

The research conducted is beneficial for security professionals for protection of organizational data.

Appreciative Comments The paper proposed directions for further

research

Gender and Remote Access as factors totally overlooked by Literature.

Psychological Factors needs Literature based research Outsourcing and Cultural Factor needs Evidence Based

Research

Critical Comment

Cultural Factor

“According to Royds most of the data losses reported by the government of the UK since the HRMC incident show that only 5% occur because of technology issues while 95% occur as a result of cultural factors”

“Empirical evidence from reported incidents reviewed in this study has found no evidence to support the assertions”

HMRC [UK Government’s Revenues and Customs Department]

Question For Discussion

Let suppose you observe some suspicious activity at your workplace.

What would be your reaction?