Gartner's strategic framework for insider risk management organizing threats into 3 types, 3 activities, and 3 mitigation goals.
The Rule of Three Framework categorizes insider threats into three types (Careless User, Malicious User, Compromised Credentials), three activities (Fraud, Data Theft, System Sabotage), and three mitigation goals (Deter, Detect, Disrupt). This framework provides a structured approach to understanding and addressing insider threats systematically, as defined in Gartner's Market Guide G00805757.