Insider Types Glossary
This category should distinguish behavioral or situational patterns without assuming intent prematurely. It should reinforce that investigation and response require evidence, context, and appropriate governance.
Use this category page to introduce the term family, list individual glossary entries, explain how the terms relate to insider risk exposure, and route readers to Foundations, Use Cases, Procedures, Tools, Standards, Metrics, Personas, and relevant IRCF™ pages.
Terms in this Category (5)
Coerced Insider
A coerced insider is an insider who is pressured, threatened, manipulated, or forced by another party to misuse access or disclose information.
Colluding Insider
A colluding insider is an insider who works with another insider or external party to misuse access, evade controls, or cause harm.
Compromised Insider
A compromised insider is a trusted user, account, device, or relationship that is used by an unauthorized party to access organizational resources.
Malicious Insider
A malicious insider is an insider who intentionally misuses trusted access to cause harm, steal assets, commit fraud, sabotage operations, or benefit themselves or another party.
Negligent Insider
A negligent insider is an insider whose careless, unaware, or noncompliant behavior creates risk or harm without clear malicious intent.