Is the biggest threat to your firm’s security already on your network?