Insiders’ access combined with their knowledge of organization’s vulnerabilities gives them the ability and opportunity to carry out malicious activity. This risk only expands with institutions’ growing reliance on business partners with whom they contract and collaborate. Include business partners, contractors and subcontractors as part of an institution’s enterprise wide view of the insider threat. At Central Bank, Lexington, KY, Chris Schum, IT Security Manager, says the bank uses port lockdown software to prevent data from ‘walking off” with visitors. An institution needs to know how it is handling and protecting data.”]
Source: https://www.cuinfosecurity.com/insider-threat-how-to-minimize-risks-from-vendors-a-1351