• Speaking
  • Downloads
  • About Talking Identity
  • About Me

Deploy Multi-Layered Security to Combat Insider Threats

  • Posted on:June 2, 2011
  • Posted in:Insight IdM
  • Posted by:Nishant Kaushik
0

Insider threats are back in the news in a big way. Bank of America revealed that an employee allegedly leaked a lot of accountholder information to a ring of criminals, which led to account hijacking and check fraud. And the goal of the RSA breach seemed to be emerging rather scarily with news of what looks like a series of highly orchestrated attacks against defense contractors Lockheed Martin, L-3 Communications and now Northrop Grumman (as security analyst Richard Stiennon said on twitter, this may be the most calculated attack since Stuxnet). While the RSA based attacks aren’t necessarily being perpetrated by insiders, the attackers are looking to leverage the access insiders have by posing as trusted users to do their dirty work.

Combating insider threats was the topic of the talk I gave at the recent European Identity Conference in Munich. The talk – When Trust is Not Enough – was based on the blog post with the same title I wrote a few months ago. In my talk I expanded on my post to describe how a multi-layered approach to identity management can help combat the risks of insider threats. I have adapted that talk as a slidecast which you can listen to and view below.

After my talk, Tim Cole grilled me on one of the key points I had made – the need to change the culture in IT of treating administrators with kid gloves and a lack of oversight. He questioned whether something like this could actually happen in enterprises. I contend that this is already happening today, and cases like the Bank of America breach offer us teaching moments about the need to bring accountability to everyone’s access, especially our most privileged users.

EIC2011_ColeI fear that we are on the verge of finding out a lot more about insider attacks, as the ability to keep quiet about them is going to end in this era of Twitter, Wikileaks and greater transparency. But enterprises that are interested in making the effort to solidify their defenses against such threats need to know that there are things they can do today to help themselves.

Be Sociable, Share!

Tags: EIC11European Identity ConferenceIdentity ManagementInsider ThreatsSecurity Breach

Recent Posts

The Conundrum of 2FA meets the Enigma that is PAM
"It's a mystery. Broken into a jigsaw puzzle. Wrapped in a conun...
The Dilemma of the OAuth Token Collector
'Tis the season to be hacked, I guess. Twitter joined a bunch of...
Why 2013 will be 'The Year of the SCUID'
I'm just now coming back to earth from the high I've been on sin...
The IDaaS Powered World
Last week I was in Colorado for the Defrag and Blur conferences....
What Happens When Telco's Declare SMS 'Unsafe'?
If you've been following Authentication related discussions, you...

Recent Comments

Bob Pinheiro on
The Conundrum of 2FA meets the Enigma that is PAM
8 weeks ago

NishantKaushik on
The IDaaS Powered World
8 weeks ago

Nikolaj Ivancic on
The IDaaS Powered World
16 weeks ago

on
The Dilemma of the OAuth Token Collector
18 weeks ago

on
The Dilemma of the OAuth Token Collector
18 weeks ago

Tags

Application-Centric IdM Burton Catalyst Conference Cloud Computing Cloud Identity Model Facebook Federated Provisioning Identity Governance Identity Governance Framework Identity in Social Networking Identity Management Identity Services IGF OpenID Oracle Identity Management Oracle Identity Manager Oracle OpenWorld Oracle_IDM Password Management Personal Identity Management Privacy Provisioning Risk Management Role Management Service-Oriented Security User-Centric Identity

Connect

Twitter Follow @NishantK

LinkedIn Connect on LinkedIn

Slideshare View Nishant's Presentations

About Me nishantkaushik.com

Categories

  • Ask Dr. K (11)
  • Identity Services (36)
  • Identropy IDaaS (2)
  • Insight IdM (124)
  • Oracle Identity Management (61)
  • Personal Identity Management (32)
  • The Cloud Identity Series (17)
  • Tips & Techniques (4)
  • User-Centric Identity (24)

Archives

  • ► 2013 (3)
    • April (1)
    • February (1)
    • January (1)
  • ► 2012 (13)
    • November (2)
    • August (3)
    • July (2)
    • June (2)
    • May (1)
    • February (3)
  • ► 2011 (29)
    • December (1)
    • November (1)
    • October (1)
    • September (2)
    • August (3)
    • July (4)
    • June (5)
    • May (3)
    • April (4)
    • February (2)
    • January (3)
  • ► 2010 (33)
    • December (1)
    • October (1)
    • September (4)
    • August (5)
    • July (6)
    • June (4)
    • May (3)
    • April (2)
    • March (3)
    • February (2)
    • January (2)
  • ► 2009 (24)
    • December (1)
    • November (1)
    • October (3)
    • September (3)
    • August (4)
    • July (2)
    • June (2)
    • May (3)
    • April (1)
    • February (2)
    • January (2)
  • ► 2008 (44)
    • December (1)
    • October (4)
    • September (4)
    • August (8)
    • July (11)
    • June (4)
    • May (2)
    • April (2)
    • March (3)
    • February (3)
    • January (2)
  • ► 2007 (56)
    • December (3)
    • November (5)
    • October (6)
    • September (5)
    • August (8)
    • July (5)
    • June (9)
    • May (3)
    • April (2)
    • March (5)
    • February (5)
  • ► 2006 (33)
    • December (4)
    • November (2)
    • October (6)
    • September (1)
    • August (2)
    • July (3)
    • June (5)
    • May (3)
    • April (2)
    • March (5)

Disclaimer

Talking Identity is my exploration of the world of Identity Management. The views expressed on this blog are my own and do not necessarily reflect the views of Identropy (doesn't mean I'm not trying hard to mold them in my own image).

Copyright © 2005-2013 Nishant Kaushik. All Rights Reserved.