About a-team Marketing Services
The knowledge platform for the financial technology industry
The knowledge platform for the financial technology industry

A-Team Insight Blogs

SailPoint Global Market Pulse Survey Underscores Risk of Insider Threats

Subscribe to our newsletter

A recent SailPoint Market Pulse Survey examined the current state of employee compliance with corporate policy related to private, sensitive data to help identify weak links in IT risk mitigation programs. Conducted by Harris Interactive on behalf of SailPoint, the survey of 3,484 employees in the United States, Great Britain and Australia found that an alarming number of employees are exposing their companies to internal sabotage and theft.

To help prevent one of the most challenging types of security breaches – “insider threats” – organizations need to fully understand “who has access to what” across their enterprises and put in place proper IT controls to ensure that access rights are appropriate. SailPoint’s Market Pulse Survey underscores this very real risk to organizations: 22% of US, 29% of Australian and almost half of British (48%) employees who have access to their employer’s or client’s private data, and who answered the question, indicated they would feel comfortable doing something with that data, regardless if that access was intentional or accidental. Further, 10% of American, 12% of Australian and 27% of British employees with access admitted they would forward electronic files to a non-employee, and 9% of Americans, 8% of Australians and 24% of Britons of these same groups admitted they would copy electronic data and files to take with them when they leave a company.

“Organizations should be very concerned about the number of employees that openly admitted to misusing proprietary data,” said Jackie Gilbert, vice president of marketing and cofounder at SailPoint. “These results show that insider threats represent a significant risk to the business. Some of the biggest and most costly data breaches have been directly tied to company employees. Having a written policy is not enough to ensure data security. Organizations need to have automated controls in place to monitor and manage user access controls in order to minimize the risk of insider theft or sabotage.”

SailPoint’s Market Pulse Survey also questioned if an employee would feel comfortable profiting from proprietary information by selling it on the Internet. While only 5% of American and 4% of Australian employees with access who answered the question selected this response, an alarming 24% of British employees with access said they would feel comfortable selling data. Added Gilbert: “Unfortunately, it’s quite easy these days for employees to sell personal data on the Internet and there are not enough controls in place to prevent this theft from happening. It’s startling to see such a high number of Great Britain employees saying they would profit from selling proprietary data on the Internet. That’s a wake up call that companies need to take a more aggressive stance, particularly in certain geographies.”

Identity governance enables companies to manage the risk of insider threats while allowing necessary access for employees by strengthening an organization’s controls over both permanent employee and contractor access privileges. Identity governance minimizes risk by eliminating high-risk accounts, proactively detecting and remediating policy violations, and automating the review of user access privileges on a regular basis to ensure they align with corporate policy.

In addition to surveying employees about access to private, sensitive data, the SailPoint Market Pulse survey also asked them about accessing corporate date through the use of mobile devices. The results highlight the importance of automatically de-provisioning employees given the proliferation of mobile devices in the workforce. Specifically, 15% of American, 29% of British and 18% of Australian employees use their mobile devices to access their company’s private Intranet or portals.

“Mobile devices can make it easier for a disgruntled employee to do a significant amount of damage,” said Gilbert. “If an employee has just been fired, it’s no longer sufficient to turn off email and confiscate their laptop. A disgruntled employee can do a lot of damage from a mobile device before he or she even reaches the elevator. As part of a successful identity governance strategy, companies must have the ability to immediately revoke all access privileges including access to private Intranet or portals.”

Subscribe to our newsletter

Related content

WEBINAR

Upcoming Webinar: Unlocking Transparency in Private Markets: Data-Driven Strategies in Asset Management

15 October 2025 10:00am ET | 3:00pm London | 4:00pm CET Duration: 50 Minutes As asset managers continue to increase their allocations in private assets, the demand for greater transparency, risk oversight, and operational efficiency is growing rapidly. Managing private markets data presents its own set of unique challenges due to a lack of transparency,...

BLOG

A (Free) Practical AI Handbook for Capital Markets Professionals

Artificial Intelligence (AI) has swiftly transitioned from a promising concept into an operational reality across the capital markets. Senior executives, compliance leaders, and technology specialists are already well-acquainted with the potential of AI to streamline processes, enhance decision-making, and open new competitive opportunities. Yet, the current challenge isn’t about grasping AI’s transformative potential – it’s...

EVENT

AI in Capital Markets Summit London

The AI in Capital Markets Summit will explore current and emerging trends in AI, the potential of Generative AI and LLMs and how AI can be applied for efficiencies and business value across a number of use cases, in the front and back office of financial institutions. The agenda will explore the risks and challenges of adopting AI and the foundational technologies and data management capabilities that underpin successful deployment.

GUIDE

AI in Capital Markets: Practical Insight for a Transforming Industry – Free Handbook

AI is no longer on the horizon – it’s embedded in the infrastructure of modern capital markets. But separating real impact from inflated promises requires a grounded, practical understanding. The AI in Capital Markets Handbook 2025 provides exactly that. Designed for data-driven professionals across the trade life-cycle, compliance, infrastructure, and strategy, this handbook goes beyond...