The New Assistant Is the Highest-Risk Moment

A new assistant receives broad context before learning which urgent requests are abnormal and which people may be trusted.

The answer

Attackers target new staff because they know enough to act and not enough to challenge. Colleagues also route exceptions through the new person before boundaries become clear. Give the assistant an authority map, verification language and a protected escalation route on day one.

Attackers target new staff because they know enough to act and not enough to challenge.

Where this breaks

Colleagues also route exceptions through the new person before boundaries become clear.

The operating move

Give the assistant an authority map, verification language and a protected escalation route on day one.

Value object — The operational card

- Trusted contacts

- Forbidden actions

- Verification routes

- Right to pause

The test

Run a benign CEO-fraud simulation during onboarding. Measure whether the assistant follows hierarchy or process.

Sources

  1. NIST Digital Identity GuidelinesNIST Digital Identity Guidelines

    Primary authority

  2. Swiss NCSC: CEO-FraudSwiss NCSC: CEO-Fraud

    Primary authority

  3. FINMA: Revised circular on operational risks and resilienceFINMA: Revised circular on operational risks and resilience

    Primary authority

Ross BelhommePartner, Svperior / Legal

Jonathan P. De Collibus

Jonathan co-founded Svperior in 2014 and leads its cyber practice. His work sits where adversarial pressure, technical architecture, and consequential decisions meet, with experience across clinical, financial, public-sector, and private-client systems where confidentiality, continuity, and technical correctness carry material consequences.

Cyber strategy / Adversarial assessment / Security architecture / Private systems

Need to apply this to a specific situation?

Send us the initial context. If the matter fits, we will respond directly.

Send private inquiry
The New Assistant Is the Highest-Risk Moment \