One generally tends to think of system administrators (sys admins) and network security as one and the same. Well one example certainly highlights the perils of completely trusting your sys admin to act in the corporations best interests. The occurrence of sys admins, at times, acting in a criminal manner are not to be ignored by corporations out there today, as that article clearly illustrated. What is helpful in helping to safeguard the network from the odd sys admin who oversteps their bounds, to the criminal, is having your networks audited by outside network security personnel. Such contractors, or outside security service providers can help in detecting such criminal behaviour. Having the penetration test or vulnerability assessment performed is always good, however, at times a network traffic audit by outsiders is helpful. Not to mention simply having an outsider go through key computers looking for evidence of wrong doing. It is money well spent in my opinion.