ABSTRACT
This chapter looks at how organisations can manage security risks and deal with insider threats in hybrid work environments. It provides an overview of the evolving security landscape and the rise of insider risks, distinguishing between different types of insider threats such as unintentional, intentional and rule-breaker threats. The Critical Pathway to Insider Risk Model is described, as a framework for understanding how personal predispositions, stressors, concerning behaviours and problematic organisational responses can lead insiders down a path towards harmful acts. Case studies like Chelsea Manning, Cameron Ortis and Nick Sharp provide real-world examples of insider threats and their far-reaching consequences. To address insider risks, the chapter advocates an employee life-cycle management approach, outlining key strategies for employee sourcing, screening, onboarding, monitoring and offboarding. Insider risk management in hybrid work environments is discussed in detail, including remote screening challenges, decreased visibility into concerning behaviours and increased data security risks. The chapter provides practical guidance so that organisations can take a proactive, holistic approach to mitigating their vulnerability to insider threats.
