Insider threat and mitigation for cloud architecture infrastructure in banking and financial services industry

Mahalle, Abhishek and Yong, Jianming and Tao, Xiaohui ORCID: https://orcid.org/0000-0002-0020-077X (2019) Insider threat and mitigation for cloud architecture infrastructure in banking and financial services industry. In: 23rd IEEE International Conference on Computer Supported Cooperative Work in Design (IEEE CSCWD 2019), 6-8 May 2019, Porto, Portugal.


Abstract

Cloud architecture infrastructure for Banking and Financial Services Corporations operates on access control mechanism and trust over various cloud user. Having established the on demand service delivery model to operate, maintain, control and govern the cloud architecture, Banking and Financial Services Corporations deliver round the clock services to customers. Despite stringent security controls and minimum access level, the cloud users identify and exploit the cloud vulnerabilities. This leads to data leakages and loss of critical information. Depending upon the area of business and sophistication with which vulnerabilities have been exploited, frauds are committed and system are damaged by employees and third party contractors. The reason for such exploitation ranges from disgruntlement to personal issues of employees and third party contractors. In this paper, we have identified the various types of insiders, their motives, risk associated with information systems and methods of mitigation in Banking and Financial Services Corporations


Statistics for USQ ePrint 37973
Statistics for this ePrint Item
Item Type: Conference or Workshop Item (Commonwealth Reporting Category E) (Paper)
Refereed: Yes
Item Status: Live Archive
Additional Information: Permanent restricted access to Published version in accordance with the copyright policy of the publisher.
Faculty/School / Institute/Centre: Historic - Faculty of Business, Education, Law and Arts - School of Management and Enterprise (1 Jul 2013 - 17 Jan 2021)
Faculty/School / Institute/Centre: Historic - Faculty of Health, Engineering and Sciences - School of Agricultural, Computational and Environmental Sciences (1 Jul 2013 - 5 Sep 2019)
Date Deposited: 31 Jul 2020 06:08
Last Modified: 09 Oct 2020 00:13
Uncontrolled Keywords: cloud infrastructure, insider risk, risk mitigation, information and system security
Fields of Research (2008): 08 Information and Computing Sciences > 0806 Information Systems > 080609 Information Systems Management
Socio-Economic Objectives (2008): B Economic Development > 89 Information and Communication Services > 8902 Computer Software and Services > 890299 Computer Software and Services not elsewhere classified
Identification Number or DOI: https://doi.org/10.1109/CSCWD.2019.8791906
URI: http://eprints.usq.edu.au/id/eprint/37973

Actions (login required)

View Item Archive Repository Staff Only