Insider Threats and Early Warning Signs
It's hard to stop starring at a train wreck or in the case of IT professionals, tracking the events of the San Francisco network lock-out. We seem to have entered the second stage of the story where blame is being doled out and more purported details emerge. One article in ComputerWorld is based on a detail email from someone claiming inside knowledge; regardless of whether or not the email accurately reflects what happened in SF, it like an archetypal story of how things can go wrong in IT.
Of course we should follow basic principals like least privilege and rotation of duties but it also helps to understand the psychology of professionals who become too engaged in their work. The ComputerWorld article is well worth reading because it shows that while log files are good indications of potential problems, reading people can be even better.
Email This!
Digg it!
Sphere it!
Del.icio.us
Reddit!
Newsvine
