Insider Risk Management (IRM) builds a framework around the new paradigm of risk tolerance, aiming to give security teams the visibility and context around data activity to protect that data, without putting rigid constraints on users. IRM does not believe in blocking s approaches to insider threat prevention. The new paradigm is all about understanding nuanced risk not preventing it, says John Defterios. It’s Not Performance Management, but IRM is a distinct program that is both transparent and invisible to your employees.
Source: https://threatpost.com/a-new-paradigm-in-data-security-insider-risk-management/164768/