The Psychology of Insider Threat Prevention Cyber Security Part 1: Identifying the Pieces of the Puzzle

Systems Management Institute Press · May 23, 2020

Insider Threat Prevention Cyber Security is the weak link in the Cyber Security arsenal. Although it may be the case that external cyber threats are continuous and that malicious insider threats are less common, the danger posed by Insider Threats are exponentially more serious.

Insider Threat Prevention Cyber Security is difficult because Prevention requires a very different perspective than "after the fact" discovery and remediation. Insider Threat Prevention Cyber Security requires not only a collection of technological solutions but also an enterprise-wide architecture that may necessitate a complete organization redesign effort in which every employee will be expected to adopt new, and more robust, Cyber Security protocols continuously. Depending on the nature of the organization involved and the type of data managed, the security measures may be quite restrictive and informed by a "zero trust" perspective where everyone must be monitored 24X7. For example, a work environment informed by the principles, or Hallmarks, of Continuous Performance Management may conflict with Insider Threat Prevention Cyber Security strategies, policies and practices to such an extent that management may be forced to abandon several of the more prominent Continuous Performance Management Hallmarks including "Openness" "Trust", "Management Re-alignment", and "Self-Directed" teams.

This series uses the Problem of Continuous Performance Management as a platform for introducing the components of a robust Insider Threat Prevention Cyber Security environment. Here you will learn about the Behavioral Science and Psychology involved in designing an Insider Threat Prevention CS architecture and the perspectives and strategies that make ITP CS successful.