What is the best Insider Risk Management solution?

4.9k views7 Upvotes32 Comments

CISO in Software, 501 - 1,000 employees
I think first it helps to be clear on your insider risk issues. So look at the profiles or personas or relevant roles in your business and then work out what your insider risks are. Once you know the risks, you can get clear on what controls or mitigation strategies you need to put in place or what gaps you have to fill. Then you can look at solutions and tools to help.
1 1 Reply
CTO in Software, 11 - 50 employees


Associate Vice President, Information Technology & CISO in Education, 1,001 - 5,000 employees
The tool will be the least of your worries. Look at developing the policies and procedures around insider risk management. Also, be sure to inform your leadership on the difference between insider risk and insider threat.

Once you have defined these things, you can look at tools like Proofpoint ITM, Dtex, Vectra, etc. to name a few.
VP( Network Engineering and Delivery) in Telecommunication, 10,001+ employees
In fact this term has assumed wide definitions and meanings post pandemic with increased remote working and proliferation of endpoints. Many vendors push products like SOAR, SIEM, UEBA etc. We have very good experience with endpoint security and Data Loss Prevention (DLP) tools. Good DLP tools are Zscalar and Forcepoint
Director of IT in Manufacturing, 5,001 - 10,000 employees
Identify, monitor and manage risks across the organization
Continuously evolve ERM program to improve compliance and elevate public confidence
Easily report on results directly to  executives
CIO in Software, 51 - 200 employees
I have evaluated ZScalar in past. Nothing wrong in tool but given our size and business, we chose to go positive reinforcement of training and awareness - if we still believe that insider risk management solution is needed, we will probably go for one of these. I would have definitely implemented in my last role of healthcare where I was responsible for HIPAA or consultancy role before that where I had huge chunks of HR data accessible to my staff 
1 1 Reply
CTO in Software, 11 - 50 employees

Thanks for the suggestion.

Director of IT in Healthcare and Biotech, 5,001 - 10,000 employees
The best is what is right for your organization. Do you prioritize cost, cutting edge technology, reporting, ease of implementation or management? Only you can answer your question, but you always have to define your needs and wants, then you can find out what is out there and what is the best fit.
VP of IT in Software, 11 - 50 employees
Microsoft Advanced Threat Analytics can be a good pick. Worth considering especially if you already have M365 and other MS apps in your stack.
1 1 Reply
CTO in Software, 11 - 50 employees

Thank you, I'll have a look.

IT Director in Travel and Hospitality, 10,001+ employees
It’s definitely a topic you need to approach and tackle from multiple angles.
For me, a combination of meaningful training and consistent positive reinforcement, great processes/policies,  together with a software solution (like zscaler) are key to insider risk management.
Director of IT in Software, 201 - 500 employees
You need to have proper policies and procedures and a team that will manage that. The tool is a supplement and can aid in detection and risk management and can automate some of the manual checks.

There are a lot of tools available, depending on whether you are looking for exclusively risk management or can be part of a larger security bundle.  The best tool depends on your use case, but I would say if you use Splunk as your SIEM then the best tool will be Splunk User Behavior Analytics (UBA). If you are a Fortinet shop i.e use Fortigate, FortiEDR, FortiAnalyzer and their security fabric then the best tool for you is FortiInsight.
Other great tools are Varonis and Proofpoint Inside Threat Manager.
VP in Construction, 51 - 200 employees
I think I will want to say code42....others might say otherwise. But sometimes solutions often depend on the insider issues you are facing.

Content you might like

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
42.6k views131 Upvotes319 Comments

Yes (share use cases in the comments)21%


Not yet / maybe in the future13%



Exclusively via organization-managed desktops, laptops, and mobile devices (phones and tablets)39%

Via a hybrid of organization-managed AND employee owned desktops, laptops, and mobile devices (phones and tablets)51%

Exclusively via employee owned desktops, laptops, and mobile devices (phones and tablets)6%



1.8k views2 Upvotes