Insider Risk Management and Rogue Employees

People are a major security risk. An organization can be vicariously liable for cyber incidents caused by its employees, whether acting negligently or maliciously, even if the organization is not at fault and could not have prevented the incident. An insider risk management program can help reduce, but not eliminate, insider risks. Organizations should establish an insider risk management program, and consider procuring insurance for residual risk.

To read Bradley Freedman’s recent publication on this topic, click here.

This content has been updated on January 3, 2018 at 12 h 01 min.