The issue with many organisations’ approach to insider threats to date has been their perception of the risk as a technology problem, says Lowry.
"We have forgotten the essence of people in all of this,” he says. “It's about people using technology. It's not about technology by itself. Too many people focus on the fact that it's all technology and therefore the answer to it must be a piece of technology.”
For that reason, the insider threat program head must report directly to the CEO or COO, says Lowry.
“It cannot be something that’s relegated and put into the IT department,” he says. “Not that the IT department is unimportant, but the minute you put responsibility for blocking individuals underneath a technology department all of a sudden it becomes a technology problem instead of a person problem.”
Sign up for CIO Asia eNewsletters.