With the rising threat of ransomware and other attacks that originate from outside organizations’ networks, it’s easy to forget the damage that an insider threat—whether it’s employee carelessness or something more malicious—can cause in both money and resources.

Archie Agarwal, founder and CEO at security firm ThreatModeler, agreed that many of the security challenges that come with remote work are still not fully addressed—leaving the door open to insider threats as well as other attacks.

“When an organization’s business practices change—such as sending workers home from the office—the hard-fought security controls implemented may no longer be in play. Put simply: the threat model changes,” Agarwal told Dice. “When this occurs, organizations should re-evaluate who can access their systems, from where that access occurs, and what possible opportunities for misuse or abuse have opened up. The key is for organizations to detect that business practices have changed and have an easy way to triage their impact.”

Read the full article here

If you’d like to learn more about ThreatModeler’s capabilities, you can contact us here.

ThreatModeler

ThreatModeler revolutionizes threat modeling during the design phase by automatically analyzing potential attack surfaces. Harness our patented functionalities to make critical architectural decisions and fortify your security posture.

Learn more >

CloudModeler

Threat modeling remains essential even after deploying workloads, given the constantly evolving landscape of cloud development and digital transformation. CloudModeler not only connects to your live cloud environment but also accurately represents the current state, enabling precise modeling of your future state

Learn more >

IaC-Assist

DevOps Engineers can reclaim a full (security-driven) sprint with IAC-Assist, which streamlines the implementation of vital security policies by automatically generating threat models through its intuitive designer.

Learn more >