This is a very interesting piece about the psychological aspects of insider threat from Symantec. While I don't think that it has any remarkable individual insights it does puts this issue in a very nice perspective and suggests non-technical, organizational measures to mitigate insider threat. They have a lot of disclaimers regarding the bias of the data used for deriving the conclusions but in general I think that they have most of it right. The problem is that I don't think any of this has eventually a practical use for organizations. For example, they claim that a predisposition for someone...
![]()