Companies have a legal and fiduciary duty wrt everything that goes on with their equipment and services.
Examples:
I was the regional IT director at an extremely large, French owned, financial organization that had a child pornography ring operating among a couple of employees and several outside entities. The investigation and apprehension involved the FBI.
At the same company: FINRA investigation into illegal insider trading at the commodities brokerage part of the company.
This stuff is going on all the time. Some of it involving law enforcement, national intelligence services (I have worked with fusion centers several times, too), and internal HR/legal.
You just don't know about it because you aren't in ops/secops/legal/hr/compliance.
Examples:
I was the regional IT director at an extremely large, French owned, financial organization that had a child pornography ring operating among a couple of employees and several outside entities. The investigation and apprehension involved the FBI.
At the same company: FINRA investigation into illegal insider trading at the commodities brokerage part of the company.
This stuff is going on all the time. Some of it involving law enforcement, national intelligence services (I have worked with fusion centers several times, too), and internal HR/legal.
You just don't know about it because you aren't in ops/secops/legal/hr/compliance.