What access controls do you place on engineers to prevent insider threat?

Security & GRC
1.7k views1 Upvote4 Comments
CTO in Software, 11 - 50 employees
A #ZeroTrust foundation with proper logging/alerting combined with the tried and true approach of "least privileges". It's about having context around behaviors, not draconian controls
3
Senior Director, Defense Programs in Software, 5,001 - 10,000 employees
Agree with on zero trust. Specifically for me, as soon as possible eliminate shared access accounts and in-application “god view” and support access without user notification/approval workflows.

Shifting security both left into development and right into operations means making processes to be performed safe, automated, and auditable.
1
CIO in Energy and Utilities, 11 - 50 employees
Zero Trust practices
Eliminate admins or supervisor-mode accounts as much as you can.

Implement and review logs, implement tools to detect uncommon behaviors
Make sure your backups are working fine (and recovery) 
Implement info protection policies using active directory or other tools
Senior Information Security Manager in Software, 501 - 1,000 employees
While we don’t use these, Security User Behavior Analytics (SUBA) & User Behavior Analytics (UEBA)  tools are gaining popularity.

But….these can’t be used in a vacuum.  An effective insider threat program is a significant effort.

Content you might like

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & LeadershipStrategy & ArchitectureCloud+57 more
CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
142 19 Replies
Read More Comments
40.7k views131 Upvotes319 Comments

What cyber threat are you most concerned about?

Security & GRCData Protection & EncryptionStrategy & Architecture

Insider threats – rogue admins19%

Encrypting my data51%

Deleting my backup copies11%

Resident malware8%

Data theft – data exfiltration11%

Other1%


140 PARTICIPANTS
1.6k views1 Comment

What headline-trend or buzzword makes you cringe the most?

People & LeadershipStrategy & ArchitectureCloud+32 more

Big Data21%

Remote Work17%

Microservices / Containerization11%

CI / CD5%

Zero-Trust15%

Automation2%

Digital Transformation16%

Cloud / Cloud Native1%

DevOps or DevSecOps6%

Other (comment)1%


1006 PARTICIPANTS
2.6k views5 Upvotes16 Comments

Does the risk of Ransomware and malware propagation bother you? Is IoT security a top of mind for you? To protect against many risks, we have witnessed success of micro-segmentation in the data center. Would you be willing to deploy similar solution for the campus? I am very curious to get your feedback?

Security & GRCThreat & Vulnerability Management
Read More Comments
2.6k views5 Upvotes5 Comments

Any recommendations on OT security product? I tried pushing Crowdstrike but it wasn't approved by OEMs. Other two are Claroty and Nozomi. Any feedback either on above two or any other as per your experience?

Security & GRCStrategy & Architecture
Read More Comments
1.8k views1 Upvote2 Comments