FIRPA Insider Risk Breakfast: A Collaborative Approach to Insider Risk Management

This week, the FIRPA Insider Risk Breakfast was hosted by the Australian Embassy in Washington DC, with Matt Salier, CEO of Aus3C, leading the discussions. The event, co-hosted with the AIR CoE (Australian Insider Risk Centre of Excellence), John “JT” Mendoza, Executive Director, US Insider Risk Management Center of Excellence and the Canadian Insider Risk Management Centre of Excellence, focused on fostering collaboration between public and private sectors to enhance Insider Risk Management (IRM) efforts.

 

Some key themes and strategies emerged during the discussions

 

The Challenge of Demonstrating ROI for IRM

One of the most significant challenges raised was demonstrating the return on investment (ROI) for Insider Risk Management programs. 

 

 

Strengthening IRM Advocacy Across Departments

IRM is not solely the responsibility of IT or security teams. For IRM to be successful, it requires buy-in and active participation across multiple departments, including Legal and HR.

 

Harnessing the Power of Technology and Behavioral Analytics

The human element of security is inherently complex, and insider risks often involve subtle, hard-to-detect behaviours. 

 

Advancing IRM with User Activity Monitoring (UAM)

Another focus area was the role of User Activity Monitoring (UAM) tools in enhancing IRM programs. UAM tools provide real-time visibility into user behaviour, helping to detect potential insider threats before they escalate. 

 

Evolving Perspectives on Insider Risk

As cyber threats grow more sophisticated, so do insider risks. Traditional views of insider risk, where threats stem from a single individual within the organization, are no longer sufficient. 

 

Thank you to the Australian Embassy in Washington, DC, and all the delegates for their valuable contributions.

Share your thoughts