While insider threat is a reality, more problems are caused by mistakes. Workers are stressed and need to get the job done. These “accidental insiders” may be dealing with unclear process, security controls that aren’t well planned, or are just trying to get something done for the customer.
In this session we will discuss: How internal process, policy and technical environment can lead to mistakes; Appropriate levels of access control, and; What we can do proactively to prevent these kinds of problems.
About Barry Caplin
Barry is the first Chief Information Security Officer for Fairview Health Services, responsible for enterprise information security and technologies including HIPAA compliance and security architecture. Barry has 30 years of experience in technology, the last 20 focused on information security. He holds an MS in applied mathematics from Virginia Polytechnic Institute (Virginia Tech), and CISSP, ISSMP, CISA, and CISM certifications. He recently retired from coaching youth sports and as director of coaching for soccer programs. He serves on the board of the Valley Athletic Association, overseeing travel and community sports.
Follow him on Twitter @bcaplin and read his blog http://securityandcoffee.blogspot.com/