Leveraging Insider Threat Incident Data and Information Sharing for Increased Organizational Resiliency

Abstract

To better prepare counter-insider threat programs for the future, organizations can leverage past incident data and artifacts to build insider threat incident corpora. In this presentation, we will: Use the development and stewardship of CERT National Insider Threat Centers Insider Threat Incident Corpus as an exemplar of this process. Review supporting information and cyber security frameworks that reflect the need for information sharing, counter-insider threat programs, and incident corpora. Discuss the types of information sharing groups that organizations can join to assist their corpus development efforts. Demonstrate how these activities that can improve counter-insider threat program functions and organizational resiliency.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2020
Accession Number
AD1110241

Entities

People

  • Sarah Miller

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Best Practices
  • Business Administration
  • Cyber Threats
  • Cybersecurity
  • Engineering
  • Information Exchange
  • Insider Threats
  • Knowledge Management
  • Management Personnel
  • Organizational Structure
  • Resource Management
  • Risk
  • Risk Analysis
  • Risk Management
  • Security
  • Situational Awareness
  • Supply Chain

Readers

  • Cybersecurity.
  • Defense Technology Research and Development.

Technology Areas

  • Cyber