January 21, 2009
I donít know of an IT or InfoSec department that hasnít spent the last several years being overburdened and understaffed. Companies are restricting planned new hires if not cutting staff outright, and doing away with bonuses and raises. Thereís nowhere for disgruntled employees to go anymore, so they stay on staff and fester away. And it isnít just IT that is feeling the pinch these day, the entire workforce is basically demoralized in recent months. Your insider risk just increased exponentially. How comfortable are you with your risk management and controls? What is a winning strategy to handle this situation?