Insider Threats: Just 18% Have Incident Response Plans

Global organizations finally understand that insider cyber threats are potentially the most damaging of all, but are doing little to quantify or respond to the threat, according to new SANS Institute research. The study, sponsored by Dtex, Rapid7 and Haystax, revealed that the largest plurality of respondents (40%) rate malicious insiders as the most damaging threat vector they face, followed by accidental or negligent staff (36%). However, nearly half (45%) claimed they didn’t know the potential for financial losses associated with an insider incident, while another third were unable to place a value on the losses.