ForscieForscie logo

Policy & Governance

How organizations define, implement, and enforce insider risk policies, covering acceptable use, escalation frameworks, and decision-making structures.

Search

All Categories Stated CasesControl ArchitectureInsider Risk TheoryDetection & ForensicsPolicy & Governance

James Weston

Policy & Governance

The PLAN for Insider Threat Investigators

PLAN is a mnemonic borrowed from British law enforcement and refined by Forscie for use in corporate insider risk and insider threat investigations. In policing, PLAN was originally created to help officers recall the parameters governing use of force. Over time, its scope broadened into a general decision-making aid for...

James Weston

Policy & Governance

The Role of Acceptable Use Policies in Insider Risk Management

Insider threats rarely emerge spontaneously or reveal themselves through immediate acts of serious harm. More often, they unfold gradually through subtle shifts in behavior, intent, or adherence to expected norms. As explored in our Behavioral Drift paper, this quiet erosion of boundaries can precede significant security incidents, often without triggering...