We pride ourselves on being proactive in dealing with external threats to our data. But why is our approach to the insider threat so much more reactive and forensic? Have we considered that being able to actively monitor and take action where privileged users behaviour is identified as risky might help us prevent this kind of data loss? Thinking beyond log management to identify behaviour.
Key Takeaways: