To drive a sense of personal responsibility among employees to report misconduct, Gartner says compliance teams need to address the benefits of reporting.
Ignoring cybersecurity whistleblowers or, even worse, subjecting them to retaliation will not fix data security problems. Instead, it will only result in increasing an organization's legal exposure and driving cybersecurity whistleblowers to report externally.
U.S. securities regulators have awarded a record $14 million to a whistleblower who helped enforcement lawyers with an investigation to recover "substantial" investor funds.
