Countermeasure against Insider Threat Regarding Psychological State of Organizational Members and Business Impact of Information Resources

Kodaka, Yuki; Hasegawa, Hirokazu; Takakura, Hiroki

Home // SECURWARE 2024, The Eighteenth International Conference on Emerging Security Information, Systems and Technologies // View article

Countermeasure against Insider Threat Regarding Psychological State of Organizational Members and Business Impact of Information Resources

Authors:
Yuki Kodaka
Hirokazu Hasegawa
Hiroki Takakura

Keywords: Insider threat, Psychological state analysis, Business impact analysis.

Abstract:
Compared to external cyberattacks, insider threats caused by organizational members can spread more widely within the organization even at an early stage, leading to significant impacts, such as business interruptions. When illicit activities are disguised as routine operations, it becomes difficult to detect them from behavioral records, such as violations of access privileges to information resources. Therefore, this paper proposes a countermeasure against insider threats regarding the psychological state of organizational members and the business impact of information resources. In addition to system operation record, the psychological state of each member is estimated using Human Resource data, such as stress tests, demotions, and salary reductions, which are held by the organization. Based on these assessments, we assess the risk of potential insider threats. Additionally, we assess the impact on the organization if information resources are leaked or become unusable, based on their operational usage. To mitigate these risks, we propose implementing countermeasures to prevent staged sabotage activities or automatically roll back executed sabotage actions. This approach aims to minimize business downtime and suppress further malicious activities, reducing the impact on business operations. However, not all Human Resource data can be used due to legal, ethical, and privacy concerns that vary across countries. Future work should examine how the accuracy of risk assessment changes when the number of assessment items is reduced.

Pages: 81 to 88

Copyright: Copyright (c) IARIA, 2024

Publication date: November 3, 2024

Published in: conference

ISSN: 2162-2116

ISBN: 978-1-68558-206-7

Location: Nice, France

Dates: from November 3, 2024 to November 7, 2024