It probably comes down to time spent trying to track whether or not he did something malicious and other investigative processes necessary. Put a few security experts or a consulting firm on the case for a year and it gets quite expensive. Also if they found out he compromised sensitive information and had to change plans or reschedule something then expenses start racking up.
