Word Family Cluster / Glossary Category

Insider Types Glossary

This category should distinguish behavioral or situational patterns without assuming intent prematurely. It should reinforce that investigation and response require evidence, context, and appropriate governance.

Use this category page to introduce the term family, list individual glossary entries, explain how the terms relate to insider risk exposure, and route readers to Foundations, Use Cases, Procedures, Tools, Standards, Metrics, Personas, and relevant IRCF™ pages.

Terms in this Category (5)

Coerced Insider

A coerced insider is an insider who is pressured, threatened, manipulated, or forced by another party to misuse access or disclose information.

/coerced-insider/Read full definition

Colluding Insider

A colluding insider is an insider who works with another insider or external party to misuse access, evade controls, or cause harm.

/colluding-insider/Read full definition

Compromised Insider

A compromised insider is a trusted user, account, device, or relationship that is used by an unauthorized party to access organizational resources.

/compromised-insider/Read full definition

Malicious Insider

A malicious insider is an insider who intentionally misuses trusted access to cause harm, steal assets, commit fraud, sabotage operations, or benefit themselves or another party.

/malicious-insider/Read full definition

Negligent Insider

A negligent insider is an insider whose careless, unaware, or noncompliant behavior creates risk or harm without clear malicious intent.

/negligent-insider/Read full definition
Educational Reference NoteThis glossary category is part of the ITMG® Insider Risk Body of Knowledge™ and is designed to establish a common, non-stigmatizing vocabulary. For program implementation frameworks, quantitative assessments, or enterprise metrics, readers are encouraged to consult the Insider Risk Capability Framework™ (IRCF™) or request a Guided Exposure Assessment.