Insider threats in the context of information security: Risks, challenges and protection strategies

Insider threats represent a critical challenge to information security, stemming from individuals with authorized access who may compromise data integrity through malicious or negligent actions. This study employs a multidisciplinary approach - integrating literature review, case studies, and legal analysis - to examine the nature, drivers, and mitigation strategies for insider threats. It compares whistleblowing, privilege abuse, espionage, and sabotage across legal, psychological, and organizational dimensions. A key finding is the blurred line between whistleblowers acting in the public interest and harmful insiders, underscoring the need for clear legal criteria. The analysis reveals that weak employee protections and toxic work environments increase retaliatory risks. The paper concludes with recommendations for a holistic defence strategy combining technical controls, legal frameworks, and organizational culture, with specific proposals for improving Serbia's fragmented regulatory system.