Unintentional insider risk refers to the potential of each worker within an organization to trigger a security breach. This form of risk is recognized as one of the most pressing issues for security professionals to address. Data now shows that only a small fraction of your workers represent the vast majority of this risk:
- 4% of users generate 82% of phishing incidents (some clicking twice per month)
- 3% of users generate 92% of malware events
- 12% of users are responsible for 71% of secure browsing incidents
It’s no surprise that 76% of cybersecurity leaders believe that having a dedicated program to manage insider risk would improve their organization’s overall security posture. However, training and simulation alone won’t solve for unintentional insider risk. The most effective programs require risk measurement and active, individualized mitigation.
The question is, how can you safeguard high-risk users, and your business, if you don’t know who they are? Learn how in this eBook from Elevate Security.