January 2026
Intermediate to advanced
51 pages
1h 10m
English
Content preview from Insider Risk Management
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Chapter 2. DLP Versus IRM: Are Both Needed?
As the introduction showed, insider risk is growing, and traditional tools alone cannot keep up. For years, many organizations have relied on data loss prevention (DLP) as the primary safeguard against insider risks. DLP tools are effective at stopping regulated information such as credit card numbers or protected health information from leaving the enterprise, but they miss the subtle context that creates insider risk. Insider risk management fills that gap by looking at intent, and context that traditional DLP cannot see. This chapter compares where DLP and IRM fit, how they complement one another, and why most programs benefit from both.
Imagine this: an employee zips a folder of project files that contain no credit card numbers or Social Security numbers, but does include confidential strategic information, and uploads it to a personal cloud account.
At first glance, this seems like the kind of activity a DLP system should catch. But it does not. DLP is tuned to recognize what the data is, such as credit card numbers, regulated identifiers, health codes, or financial records, and then enforce rules around those patterns. If the files do not match, or if they are encrypted or zipped and unreadable, nothing is flagged. Because traditional DLP cannot interpret context, it overlooks the real warning signs: user risk levels, unusual timing, unfamiliar devices, personal cloud accounts, and behavior that is unusual for a specific role or ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.