Insider Threat Prevention Tips. Click on each item below to reveal more insider prevention tips.

Insider Threat Prevention Tips

Careless Insider

A copier is printing sensitive information.

Do not leave hardcopy documents containing sensitive information at a printer, copier or fax machine, in the trash, breakroom, restroom, or on your desktop unattended.

Documents containing sensitive information should be in your possession at all times, locked away, shredded, or properly discarded.

Occurrences of accidental sensitive data leaks could be classified as negligent and grounds for suspension, discharge, and criminal penalties.

Exploited Insider

Closeup of a person’s hands using a smartphone.

Never divulge sensitive information, such as phone numbers, email addresses, or other personal details over the phone. Always verify the identity of anyone requesting sensitive information before releasing it.

Even after the request for information is verified, as a precaution, call back using a phone number you have on file or obtained on your own, not a phone number the caller gives you, as this phone number may not be legitimate.

Malicious Insider

Closeup of a person’s hands typing on a computer keyboard.

Preventing malicious insider attacks is everyone’s responsibility. If you see something that is concerning, report it immediately.

Examples of concerning actions and behaviors, may include:

  • Making threats to take the company down,
  • Abruptly exiting or closing out of programs or files when others are near,
  • Requesting access to sensitive data outside of their job scope,
  • Needlessly or excessively printing or copying sensitive data, and
  • Blatantly disregarding data security protocols.