I just tuned in to a webcast sponsored by NetIQ. The topic of the talk was Fraud, Privilege, and the Insider Threat. One of the speakers, Dr. Eric Cole, made a few points that I felt were very true and often overlooked:


  • Insider threat is not about protecting the servers in the data center, but about protecting the data on those servers.
  • If you are on the defense, you have to find all vulnerabilities. if you are on the offense, all you need is one.


After the first bit of the presentation was over, and it switched to the NetIQ speaker, I tuned out because I had other obligations.