More thorough vetting of contractors and employees is another best practice organizations should adopt during the hiring process. “At the least, you need to organize a well-thought-out insider threat program that can help protect you,” expert says. CERT publishes the Common Sense Guide To Insider Threat, which provides best practices, such as documenting and consistently enforcing policies and controls. Remotely located users or contractors are not always well-monitored, but if they have legitimate access, it’s difficult to spot foul play.”]
Source: https://www.darkreading.com/attacks-breaches/nsa-leak-ushers-in-new-era-of-the-insider-threat