Discussing the 2015 Insider Risk Report with Eric Aguado, COO at ThrottleNet
When we were putting together our 2015 Insider Risk Report, we sat down with several Intermedia partners to get their take on the surprising survey results we found and to hear what they would recommend to solve the issue of risky employee behavior. Here’s the third interview of this series with Eric Aguado, COO at ThrottleNet, Inc.
Question #1: What do you think about the data showing that Millennials are more likely to engage in risky behavior than Gen Xers or Baby Boomers?
“Young people grow up with technology, so it comes more naturally to them. Older generations have an inherent fear of technology, which is actually a really good thing when it comes to IT security practices. My mother comes from the Baby Boomer generation, and she has this idea that ‘the cloud is bad.’ Millennials have a smartphone in their hands by the time they’re 8. And while Millennials may be professionals, and they may know what’s right and wrong, they lack experience. They think they’ve got it all figured out, but I constantly see them doing stupid things—like using their bank password at work.”
Question #2: Why do you think tenured employees pose a greater risk to their company?
“It’s just human nature. The longer you’ve been in a profession, the more you tend to relax your guard. You grow apathetic.”
Question #3: Were you surprised by the finding that employees larger companies engaged in just as much risky behavior as employees at smaller companies?
“I wasn’t surprised by this. My last company had 80,000 employees, and everything was far more regimented. From the day you start, you get rigid IT training. But in the end, human habits are human habits, no matter what company you work for. If a person with bad IT habits leaves a small business to go work for a large company, why would their habits change?”
Question #4: Any advice for companies trying to combat insider risk?
“When it comes to security, the more you can leverage technology to automate security, the better. ALL human beings are prone to errors and mistakes. A good example of this is automated security policies. We’re still going to train users in best practices and security habits, but we also know that everyone is going to make mistakes. So we leverage things like group policies and remote monitoring and management because automation is more effective than training.”
To learn more about the security risks posed by employee behavior and how to protect your company, we encourage you to read our 2015 Insider Risk Report and follow the conversation online at #RiskiestUsers. And read the first partner interview in the series where we chat with Felix Yanko, President of ServNet and the second interview with Martin Dunsby, CEO of Hybridge, Inc.