Shows
Understanding insider risk: focus on mistakes, not blame
Insider risks often stem from innocent mistakes, highlighting the need for supportive reporting cultures in organisations
Insider risks often stem from innocent mistakes, highlighting the need for supportive reporting cultures in organisations
– Most insider incidents arise from unintentional mistakes by employees rather than malicious intent.
– Organisations should foster a culture of openness and psychological safety to encourage error reporting and learning.
When discussing insider risk, the common perception is of a malicious employee. In reality, most incidents stem from unintentional mistakes. Errors occur when employees upload files incorrectly or engage with phishing emails while distracted.
Jacqueline Jane and Andrew Pedroso of SoSafe are exploring approaches to mitigate this risk by discussing systems that accommodate human errors rather than imposing punishments.
These errors often involve well-meaning employees acting in error rather than out of malice, accounting for 60-70% of incidents. To reduce risk, organisations can implement advanced technologies that streamline processes while fostering an environment where employees feel confident to admit mistakes. It’s crucial to shift the mentality from fearing errors to learning from them.
