Knowledge Hub

An interesting article published recently in the UK exposed one of the biggest challenges in the defense world: the security clearance process itself.

On the one hand, there's no debate about the importance of background checks, security clearances and protecting sensitive information. These are essential mechanisms designed to safeguard national interests, sensitive technologies and critical supply chains.

On the other hand, when the process of obtaining a clearance drags on for many months and sometimes more than a year, an absurd situation arises: the company can't get a contract because it has no clearance, but it also can't get a clearance because it has no contract.

This dilemma isn't unique to the UK. Anywhere that complex screening processes and trustworthiness vetting exist, the challenge is finding the balance between security and agility.

As someone who has worked for many years in the field of background checks and trustworthiness vetting, I believe the goal is not to lower the requirements. On the contrary.

The goal is to create smarter, faster and risk-management-based processes.

Not every supplier represents the same risk. Not every employee needs the same level of vetting. And not every process has to drag on for many months.

When risks are managed properly, you can both maintain security and enable innovation and growth.

The real challenge isn't to perform more checks. The challenge is to perform the right checks, at the right time, and in a way that lets the organization move forward instead of getting stuck.

How deeply do organizations vet the people in whose hands they place power, influence and trust?

In this case it's a therapeutic profession. In other settings it's a CFO, a security officer, a procurement manager, an IT person with broad permissions, or an employee exposed to sensitive information.

One of the central lessons from the world of insider threats is that not every risk is measured by a criminal record or a conviction. Sometimes it's precisely behavioral patterns, decision-making under pressure, moral judgment and reactions to extreme events that should set off warning lights.

Many organizations focus on the question "Does this employee have a criminal record?", but often the more important question is: "Is there material information about their past conduct that would make us think twice before granting them a sensitive role?"

In this specific case, it isn't a legal question but a question of risk management.

When a person is set to hold a position of trust, to influence other people or to gain access to sensitive resources, it's worth examining several layers: a history of decision-making in extreme situations; involvement in events of public or moral significance; gaps between their current image and material past events; an up-to-date rather than one-off risk assessment; and oversight and control mechanisms over time.

It's also important to remember that insider threats don't arise solely from malicious intent. Sometimes they stem from poor judgment, from withholding information, from a lack of accountability, or from value conflicts that weren't identified in time.

Ultimately, every organization has to decide where the line lies between personal rehabilitation and professional responsibility. It's a complex decision, but it must be made out of informed risk management and not out of the assumption that if there's no legal impediment, there's no risk either.

The book deals with the kind of people that most organizations don't really know how to identify in time. Not violent criminals. Not extreme characters from movies. Rather charismatic, impressive, sharp people, with an extraordinary ability to make others believe in them.

It is precisely because of this that they are dangerous.

The authors describe how an organizational psychopath manages to fit into an organization, advance quickly, accumulate power and influence, and along the way leave behind enormous damage: the breaking up of teams, the creation of conflicts, political manipulations, intimidation of employees, harm to trust, the creation of a toxic culture, and at times also fraud and abuse of authority.

What is particularly interesting is that the book explains that the problem is not only with the person himself. At times the organization also contributes to it without realizing it.

Organizations that sanctify charisma, fast results, aggressiveness, achievement at any cost, and internal politics, may mistakenly identify psychopathic behavior as "leadership".

One of the important things in the book is the description of the three stages in which an organizational psychopath operates.

In the first stage he studies the system: who is strong, who is weak, who is influential, who is threatened, who has access to power and information.

In the second stage the manipulation begins: flattery, the creation of false trust, adapting his personality to each individual, sophisticated lies, and quiet harm to rivals.

In the third stage comes the abandonment: when the person is no longer useful, he is thrown aside. Sometimes also with deliberate harm to his reputation.

The most important part for me is the understanding that it is not always possible to identify such people through charisma or first impression. On the contrary.

In many cases they are calm under pressure, know how to speak convincingly, project self-confidence, know how to "read people", and imitate empathy excellently.

And therefore in the world of Insider Threats, employee recruitment, and reliability assessment, one must not rely only on intuition or a "gut feeling".

One must examine: behavioral consistency, gaps between words and actions, patterns of manipulation, attitude toward people without power, history of conflicts, and repeated use of victims, accusations, and politics.

This book is an excellent reminder that the most dangerous threats in an organization don't always come from outside.

Sometimes they are sitting in the boardroom.

The abuser.

That manager who belittles employees, humiliates them in front of others, instills fear, erodes them psychologically, creates anxiety and dismantles self-confidence over time.

Studies have already shown that workplace abuse does not stay on the emotional level alone. It harms cognitive ability, decision-making, memory, concentration and professional functioning. An employee under ongoing psychological terror begins to make more mistakes, to withdraw, to lose motivation and sometimes even to develop anger toward the organization itself.

And this is exactly where the connection to the world of insider threats begins.

Because sometimes the 'predator' himself is the insider threat. And sometimes he creates a new insider threat: the employee he has harmed.

An employee who experiences ongoing humiliation can turn into a bitter, indifferent, vengeful or uncommitted person. In certain cases this manifests as quiet quitting, leakage of information, harm to processes, or simply a functional collapse that damages the organization from within.

This is exactly why I think it is not enough to check only the integrity, past or reliability of candidates. You also need to know how to identify predatory patterns.

Yes, there are ways to identify them. You can detect early signs already at the recruitment stage: extreme patterns of control, manipulativeness, lack of empathy, destructive interpersonal relations over time, recurring burnout patterns in the teams they have managed, and a work environment that produces fear instead of trust.

And if that person is already inside the organization, you must monitor such behaviors exactly as you monitor other security anomalies. Because their damage does not always appear immediately, but when it explodes, the organizational cost is enormous.

I think that in the near future organizations will understand that workplace abuse is not only an issue of HR or employee well-being. It is an issue of organizational security.

According to the suspicions, a 20-year-old managed to create “synthetic identities” of Israeli citizens using photos and personal details obtained from breached databases. With AI tools he animated the photos, produced videos that looked entirely authentic, and used them to open bank accounts, order credit cards and carry out financial transactions in the names of people who had no idea it was happening.

According to the investigation, many dozens of victims have already been identified, and it is suspected that hundreds of citizens were harmed by this activity.

What troubles me most about this case is not only the scale of the fraud, but the proof that the identification methods we have relied on for years are no longer sufficient on their own.

A photo of an ID card, a selfie, a short video, remote verification — until recently all of these were considered strong layers of protection. Today, in the right hands and with advanced AI tools, they can be faked to a level that makes it very hard for the human eye to detect the deception.

This challenge no longer belongs only to banks. It is relevant to any organization that hires employees remotely, approves suppliers, opens customer accounts, grants access permissions or runs digital identification processes.

The question is no longer whether an identity can be faked, but whether your control system is able to detect the forgery in real time.

In recent years I have seen more and more cases in which the line between a real person and a figure created by AI is becoming blurred. Organizations must adapt their verification mechanisms to the new reality, and not rely solely on methods built for a world that existed before artificial intelligence.

Alongside the threat, there are now advanced solutions that make it possible to spot signs of AI forgeries, detect anomalies in the identification process and verify identities in real time.

We have advanced technological solutions to address these challenges in real time. Feel free to reach out to me for details.

The article in Science by Prof. Hany Farid, one of the world's leading experts on detecting digital manipulation, lays out a reality we all have to internalize: a deepfake no longer looks like a technological toy. It looks real, sounds real, spreads fast, and shapes the way people make decisions.

And the big problem isn't just that the fakes are getting better. The bigger problem is that trust is being eroded.

When a manager receives a video. When the HR department runs an online interview. When a company gets approached by an investor, a candidate, a vendor or a business partner. When an incriminating video starts circulating online. When a familiar voice asks for urgent action.

The first question can no longer be: "Does this look real?" Because today, plenty of fake things look completely real.

The right question is: "How do we check this professionally before we act?"

What I especially liked in the article is Farid's investigative approach. He doesn't settle for an automated tool that says "90% fake" or "70% real." He examines physics, motion, shadows, reflections, angles, lip-sync to voice, consistency between frames, and the broader context.

And that's exactly the point. With deepfakes there is no single magic solution. You need a combination of technology, investigative experience, an understanding of human behavior, an understanding of the digital arena, and the ability to ask the right questions.

In the business world this is especially critical. Because deepfakes don't threaten only politicians or celebrities. They threaten hiring processes, background checks, trust between organizations, fraud protection, digital identity, and the ability to understand who is really standing in front of us.

An online job interview can be faked. A professional profile can be well built yet not genuine. A manager's voice can be cloned. A video can be edited. An image can be generated from scratch. A document can look authentic while being part of a broad deception scheme.

That's why organizations can't stay at the stage of "it looks real to me." They need a verification capability. Not out of panic. Not out of excessive suspicion. But out of responsibility.

Anyone who recruits employees for sensitive roles, vets business partners, verifies identities, handles fraud incidents or deals with suspicious content online must add to their desk the ability to deal with deepfakes too. Especially when everything happens online.

If you're dealing with a suspected deepfake, a fake identity, a suspicious interview, problematic digital content or an incident where it's unclear what's real and what's not, you're welcome to reach out to us.

We have innovative, groundbreaking solutions for dealing with deepfakes, including in online environments, combining advanced technology with professional human analysis.