The people risk

Issue 7 2021 Security Services & Risk Management

In very broad terms, in today’s world I firmly believe that people bring one of the greatest risks to any organisation.

When looking at the risk factor in the corporate environment, we generally consider the employee a small part of the risk prevention strategy and there are times when they have been excluded completely. Employee screening has been around for many years and has evolved from being merely a simple criminal record check and has grown into some companies doing a full lifestyle audit on potential as well as existing employees.

While employee screening may be a great proactive tool, does it genuinely prevent risk in your organisation? This is a question that is often posed and I am quite adamant that most employee screening verifies what an individual has done in the past and does not measure the intention or reputation of a person.

During the life cycle of an employee, risk can be measured in various ways and companies should be encouraged to have people risk become part of the many facets of an organisation: human resources, legal, procurement, finance, etc.

Many of the tools used prior to employing a person should be part of an in-service risk mitigation strategy as people’s circumstances change and often people are very happy to share their activities on social media without realising the dangers of what they are doing. Many will argue that the company has a responsibility to train and keep an employee from becoming a threat, but this does need to be a combination of efforts from both sides and if proper integrity and personality assessments have been done from the start, it does make it far easier to understand the element of people risk.

To manage people risk, there should be three elements to a people risk management strategy:

1. Pre-employment screening.

2. In-service screening and people risk management.

3. Departing employee screening.

In addition to this, it is essential to remember that the people in a business are not only your employees. Third party contractors and suppliers often contribute greatly to the number of people in a company and many of these people are not always on site in the company.

Does your people risk management programme including the screening of contractors and the verification of suppliers?


Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Deception technology crucial to unmasking data theft
Information Security Security Services & Risk Management
The ‘silent theft’ of data is an increasingly prevalent cyber threat to businesses, driving the ongoing leakage of personal information in the public domain through undetected attacks that cannot even be policed by data privacy legislation.

Data security and privacy in global mobility
Security Services & Risk Management Information Security
Data security and privacy in today’s interconnected world is of paramount importance. In the realm of global mobility, where individuals and organisations traverse borders for various reasons, safeguarding sensitive information becomes an even more critical imperative.

Proactive strategies against payment fraud
Financial (Industry) Security Services & Risk Management
Amid a spate of high-profile payment fraud cases in South Africa, the need for robust fraud payment prevention measures has never been more apparent, says Ryan Mer, CEO of eftsure Africa.

How to prevent and survive fires
Fire & Safety Security Services & Risk Management
Since its launch in August 2023, Fidelity SecureFire, a division of the Fidelity Services Group, has been making significant strides in revolutionising fire response services in South Africa.

A long career in mining security
Technews Publishing Editor's Choice Security Services & Risk Management Mining (Industry)
Nash Lutchman recently retired from a security and law enforcement career, initially as a police officer, and for the past 16 years as a leader of risk and security operations in the mining industry.

Risk management: There's an app for that
Editor's Choice News & Events Security Services & Risk Management
Zulu Consulting has streamlined the corporate risk management process with the launch of Risk-IO, a web-based app designed to consolidate and guide risk managers through the process, monitoring progress as one proceeds.

Integrated information platform for risk management
Editor's Choice News & Events Security Services & Risk Management
Online Intelligence recently launched version 7 of its CiiMS risk and security platform. Speaking to SMART Security Solutions after the launch event, the company’s Arnold van den Bout described the enhancements in version 7.

Global Identity Fraud Report revealing eight-month ‘mega-attack’
Editor's Choice Security Services & Risk Management
AU10TIX recently released its Q4 Global Identity Fraud Report, with the research identifying two never-before-seen attack patterns, with the worst case involving 22 000+ AI-generated variations of a single U.S. passport.

Linking of security officers by security businesses
PSiRA (Private Security Ind. Regulatory Authority) News & Events Security Services & Risk Management
[Sponsored] By law, all security businesses are required to declare their employees to PSiRA so that they can be accounted for administratively. Failure to link employees by security businesses is a contravention of the Code of Conduct and a criminal offence.

AI augmentation in security software
Security Services & Risk Management AI & Data Analytics
The integration of AI technology into security software has been met with resistance. In this, the second of two articles, Paul Meyer explores the challenges and obstacles that must be overcome to empower AI-enabled, human-centric decision-making.