“HR leaders who don’t take a proactive, holistic approach to cyber-security are on the back foot,” says Deloitte’s Bill Windle
It’s a celebrated fact that technology continues to place unprecedented power in the hands of individuals. However, this can be a double-edged sword for organizations.
Research consistently finds that malicious insider acts – where an employee or contractor with inside access to a company’s systems intentionally damages their employer – account for more than 20 per cent of high-impact cyber-attacks.*
Yet in many organizations the malicious insider is still an unacknowledged, misunderstood and unaddressed risk. Data does not lose itself and sabotage is a human act typically motivated by revenge. HR leaders need to stop and think: how does your business address and govern employee risk?