Cyber Security Archives

Connection without closeness

In this piece, Katie Barnett argues that insider risk is often misunderstood as a problem of malicious intent when in reality it more often develops gradually through stress, fatigue, financial pressure or disengagement. Many incidents are preceded by subtle behavioural changes that go unnoticed or unaddressed, leaving organisations reacting too late. Her focus is on shifting from a purely technical or disciplinary response to one that recognises the role of wellbeing, culture and early intervention. Supporting people earlier, she suggests, is not a soft option but a more effective way to reduce risk before it escalates.

The leadership dilemma: Governing the “Agentic AI” workforce

In this piece, Peter Connolly argues that AI is no longer just a tool but an active part of the workforce. As organisations adopt more autonomous, decision-making systems, the real challenge is not deployment but governance. Without clear accountability, identity controls and behavioural guardrails, digital agents can introduce risks similar to highly privileged insiders. His message is straightforward: treat AI like part of the workforce, with defined ownership, oversight and limits, or risk letting autonomy outpace control.