Editor's Choice
Analytical Instrumentation & Environmental Monitoring
Data Acquisition & Telemetry
Electrical Power & Protection
Enclosures, Cabling & Connectors
Fieldbus & Industrial Networking
Flow Measurement & Control
Industrial Computer Hardware
Industrial Wireless
IS & Ex
IT in Manufacturing
Level Measurement & Control
Maintenance, Test & Measurement, Calibration
Mass Measurement
Motion Control & Drives
News
Operator Interfaces, Switches & Relays
PLCs, DCSs & Controllers
Pneumatics & Hydraulics
Pressure Measurement & Control
SAIMC
SCADA/HMI
Sensors & Transducers
Smart Home Automation
System Integration & Control Systems Design
Temperature Measurement
Training & Education
Valves, Actuators & Pump Control


IT in Manufacturing



Print this page printer friendly version

The hidden dangers within: strategies for combating insider threats

February 2025 IT in Manufacturing

By Ivaan Captieux, information security consultant at Galix.

In South Africa, insider threats are an increasingly significant risk for businesses, driven by economic uncertainty, labour disputes and rapid digital transformation. From disgruntled employees to compromised third-party service providers, insider threats can originate from many places, often from those with legitimate access to sensitive systems or data. As businesses navigate this complex landscape, managed security service providers (MSSPs) offer invaluable support, helping companies implement comprehensive strategies to mitigate insider threats and protect their data.

The growing insider threat landscape

Insider threats today are more complex than ever, as they could potentially involve not only employees but also external partners like contractors and vendors. Adding to this complexity is the rapid digitisation of businesses. As companies adopt new technologies to remain competitive, many struggle to put adequate security measures in place, which can leave them vulnerable, especially in environments where cybersecurity expertise is scarce. In addition, lack of awareness and training can result in employees unintentionally creating vulnerabilities that could be exploited by malicious insiders.


Ivaan Captieux, information security consultant at Galix.

Those with malicious intent are increasingly targeting contractors, vendors and partners rather than attacking companies directly. These third parties often have legitimate access to company systems but may lack the same level of security, making them easier targets for cybercriminals. The SolarWinds attack, which came to light in 2020, is a prime example of how third-party vulnerabilities can lead to widespread data breaches.

Data theft or exfiltration is another common insider threat scenario. Employees may steal sensitive information such as intellectual property or customer data for personal gain or to sell to competitors. This often occurs when employees are about to leave the company and decide to download confidential files before their departure. Lastly, sabotage is a risk, particularly when disgruntled employees or IT administrators intentionally damage systems or leave backdoors open that allow future unauthorised access, potentially leading to ransomware attacks.

Proactive steps to mitigate insider threats

It has become essential for businesses to take proactive measures to mitigate insider threats, focusing on securing access to sensitive information, protecting critical data, and continuously monitoring systems for suspicious activity.

A key step is implementing role-based access control (RBAC), where employees are granted access to information strictly based on their role within the company. This limits the exposure of sensitive data to only those who genuinely need it. To further enhance protection, data loss prevention (DLP) tools can be deployed. These tools monitor the movement of sensitive data, ensuring that it cannot be copied, shared or transferred without proper authorisation. DLP systems can block attempts to send confidential information outside the organisation through channels like email or cloud storage.

Monitoring plays an equally vital role, especially when it comes to third-party service providers. Companies must ensure that vendors and contractors with access to their systems adhere to the same stringent security standards as employees. Regular reviews of third-party access and the implementation of least privilege principles, where users are only granted the minimum level of access necessary, help reduce the risk of data breaches. For vendors requiring remote access, it is critical that businesses enforce strong security measures, including the use of virtual private networks (VPNs) and multi-factor authentication (MFA).

The role of MSSPs in combating insider threats

MSSPs can be an essential source of support in managing and mitigating insider threats, providing businesses with the expertise and tools needed to safeguard their data. This includes assisting organisations in developing insider threat policies. These policies clearly define acceptable behaviour, data access rules and protocols for handling sensitive information, ensuring that employees and third parties understand their responsibilities.

In addition to policy creation, MSSPs play a crucial role in conducting risk assessments of third-party vendors. These assessments identify potential security weaknesses and evaluate the level of risk that external partners pose. MSSPs help ensure that vendors follow strict security protocols, minimising the threat of data breaches originating from external sources. This adherence to security standards is vital for regulatory compliance, particularly with frameworks such as POPIA, PCI DSS, HIPAA and GDPR.

MSSPs also provide businesses with access to advanced security technologies that might otherwise be too costly or complex to manage internally. Tools like security information and event management (SIEM) systems, endpoint detection and response (EDR) capabilities, and intrusion detection systems are critical in identifying and responding to insider threats in real time. These technologies allow companies to monitor their networks continuously for suspicious activity, ensuring that any threat is swiftly detected and neutralised.

MSSPs may also offer physical penetration testing services, simulating insider threat scenarios to assess the effectiveness of physical security measures. These tests reveal vulnerabilities such as unauthorised access to restricted data, or tampering with critical systems that could be exploited by malicious insiders. By identifying and addressing these weaknesses, businesses can bolster their defences against both digital and physical threats.

MSSPs can help businesses stay ahead of evolving threats and safeguard one of their most important business assets – data. From safeguarding sensitive information to ensuring regulatory compliance, MSSPs are essential partners in securing businesses against the ever-present danger of insider threats.

For more information contact Ivaan Captieux, Galix Group, [email protected], www.galix.com




Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Africa’s pragmatic approach to AI and how data centres are enabling it
Schneider Electric South Africa IT in Manufacturing
In Africa, the current AI momentum is driven by a fundamental need, building a resilient digital infrastructure that addresses the real-world challenges of the continent’s communities.

Read more...
World first simulation of error-correctable quantum computers
IT in Manufacturing
Quantum computers still face a major hurdle on their pathway to practical use cases, their limited ability to correct the arising computational errors. In a world first, researchers from Chalmers University of Technology in Sweden have unveiled a method for simulating specific types of error-corrected quantum computations.

Read more...
Platform to accelerate supply chain decarbonisation
Schneider Electric South Africa IT in Manufacturing
Schneider Electric has launched Zeigo Hub by Schneider Electric, a powerful new digital platform designed to help organisations decarbonise their supply chains at scale.

Read more...
Future-ready data centres
IT in Manufacturing
The white paper ‘Future-Ready Data Centres’ by Black & Veatch outlines how integrating sustainable design principles not only helps meet ESG goals but also ensures reliability, operational efficiency and business continuity in the face of climate change and growing digital demand.

Read more...
Sustainable energy management
Siemens South Africa IT in Manufacturing
Utilising its innovative ONE approach technology, Siemens provides complete transparency on resource consumption and offers data-driven optimisation recommendations for sustainable energy management.

Read more...
Enhancing operational safety and efficiency through advanced risk-based modelling
IT in Manufacturing
Now, more than ever, capital and operational cost can be reduced while enhancing operational safety and increasing production uptime by applying transformative methods such as Computational Fluid Dynamics modelling.

Read more...
Siemens turbocharges semiconductor and PCB design portfolio
IT in Manufacturing
Siemens Digital Industries Software has unveiled its AI-enhanced toolset for the Exploratory Data Analysis (EDA) design flow, showcasing how AI can improve productivity, accelerate time to market for the EDA industry and enable customers to explore innovation opportunities at the rapidly increasing pace that the market demands.

Read more...
Why South Africa is a prime target for ransomware attacks
IT in Manufacturing
Ransomware attacks have become a significant threat to South African businesses, with the country emerging as a top target in Africa. Businesses must adopt a proactive approach to cybersecurity to protect themselves from ransomware

Read more...
Enabling a sustainable organisation
Rockwell Automation IT in Manufacturing
This article explains the top sustainability trends and key actions that you can leverage to become a more sustainable organisation.

Read more...
Leading the way to the all-electric mine
ABB South Africa Editor's Choice IT in Manufacturing
Decarbonising the mining sector requires more than just new technology. ABB eMine provides a strong portfolio of electrification and automation solutions, consulting, partnerships and technology applications to support mining operations to reduce emissions and achieve operational cost savings and superior efficiency.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  Hi-Tech Security Solutions
»  Hi-Tech Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd | All Rights Reserved