This is one area where i think an Omniunify approach would be interesting. Many people and companies fear Insider Threats. They fear the damage to their company, their customers, their reputation. But if you delve deeper into the after effects, many of these companies have reached a higher level afterwards. It might take some time, and lots of input / readjustments, etc. But they come out stronger.
It almost seems like an Insider Threat incident was a catalyst to the next level.
What if we were able to map the environment which allowed the Insider threat to happen, and we could fool the business omnisignature by manipulating the Omnisignatures / Omniclusters that an Insider Threat had occurred, and limit or negate the damage part of the cycle to fail.
