An example of whistleblower behaviour taken from Harry McLaren’s slides
Workplace surveillance is nothing new, but this slide from Harry McLaren’s talk on Machine Learning for Threat Detection illustrates particularly well the challenges facing journalists wishing to protect whistleblowers.
McLaren is talking about malicious threats, and the way that machine learning can be used to identify suspicious patterns of behaviour. But the example given above is equally useful in illustrating the way that similar behaviour might be used to identify an employee intending to whistleblow on illegal, unethical or dangerous behaviour by his or her organisation.
Data Loss Prevention (DLP), network forensics, and content management technologies are already being used to prevent such leaks, but machine learning adds a new dimension to the field.
The point for journalists is that collections of small actions – including those which protect the whistleblower – can be just as compromising as obvious oversights like a lack of information security.
I’ve embedded video of McLaren’s talk (from May 2016) and the full slides below.
Thanks for the shout out Paul! Hope your readers find the talk interesting. Anyone local to Edinburgh and a Splunk User might want to check out our User Group: https://usergroups.splunk.com/group/splunk-user-group-edinburgh.html