Insider Threat

Abstract

The DoD Insider Threat program will provide an integrated capability to monitor and audit information for insider threat detection and mitigation. The program will gather, integrate, review, assess, and respond to information derived from CI, security, cyber security, civilian and military personnel management, workplace violence, anti-terrorism risk management, law enforcement, the monitoring of user activity on DoD information networks, and other sources as necessary and appropriate to identify, mitigate, and counter insider threats. Key elements of the Insider Threat program and security reform efforts are the implementation of Continuous Evaluation (CE) and establishment of the Defense Insider Threat Management and Analysis Center (DITMAC).

Document Details

Document Type

R2 Budgetary Justification

Publication Date

Oct 01, 2018

Source ID

0305327V_7_0400_PB_2018

Change Summary Explanation

There is minimal increase from FY17 to FY18. The $5.4M is required to meet the enterprise adoptability requirement goals for the platform. The DITMAC and the systems that support it (DITMAC System of Systems (DSoS)) were scoped to enable processing of reports to DITMAC only. The commencement of operations of some DoD Component Insider Threat Programs in FY16 uncovered a lack of available technical capabilities. A determination was made to offer the DSoS as the DoDs enterprise platform for insider threat related technical capabilities. The platform expansion requires a complete system re-architecture design to make the technical capabilities more readily accessible by related missions, increasing communication/information sharing, decreasing cyber vulnerabilities, and cost savings each year in software licensing and technical support.

Service Agency Name

Defense Security Service

Entities

Tags

Related Documents

• Child Project: Insider Threat
• Child Accomplishment: Insider Threat