1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

IDG Contributor Network: What's your cybersecurity whistleblower strategy?

Discussion in 'CSO' started by RSS, Jan 5, 2016.

  1. RSS

    RSS New Member Member

    It reads like a security nightmare. An employee, maybe even someone in IT, contacts a government regulator and reports major vulnerabilities in the company’s infrastructure. The employee says the company knows about the problems but has done nothing, putting people's personal data or maybe even their physical safety at risk.

    Even worse, the whistleblower claims to have been punished for complaining too much to management about the problems. An investigation ensues, forcing the company to hire attorneys and consultants, and the regulator levies a hefty fine when several accusations prove accurate. Finally, the whistleblower is given a portion of that judgement, financially rewarded for exposing their employer’s dirty laundry.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page