Abstract:
insiders are people with legal access to information. They pause a challenge to security
of information systems. Insiders information security systems threats may compromise
the system security through misusing the resources they have been assigned to
accomplish their roles in an institution. There are models that have been presented to
help organization protect itself against insider security attacks. The models presented
are categorized as predictive, intent-driven threats models and domain oriented model.
There are inadequate models in literature that can be applied in organizations for insider
security threats protection. The existing model further faces challenges at the
implementation stage and practical implications of the model use in organization.