Introduction

Billions of dollars have been spent over the last few decades on corporate information technology (IT) security in order to “keep the bad guys out,” but it turns out the bigger threat was and always has been found within the network perimeter. The so called “insider threat,” the trusted employee, contractor, or partner, that can cost an organization more on a daily and/or per-incident basis than any outside hacker could hope for.

Whether we like it or not, “good people do bad things” intentionally, accidentally, or indirectly.

In my 30 years in the IT industry, I have observed and experienced first-hand the impact of major architectural and platform shifts on enterprise customers; the mainframe to mid-range to desktop shift that ...

Get Preventing Good People from Doing Bad Things: Implementing Least Privilege now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.