IT departments' employees, especially administrators, have access to the organisation's most confidential and valuable data, yet IT managers continue to focus most of their security resources on patching systems and building better firewalls (both of which are certainly important). Perhaps this is because they are afraid to acknowledge the real threat of an insider attack, or perhaps it's because they don't know how to deal with it. We're going to take a closer look at this problem and provide some suggestions.
The link for this article located at TechRepublic.co.uk is no longer available.