Measuring and Mitigating Organizational-Culture Vulnerabilities to Reduce Insider Risk

Abstract

Insider risk management typically focuses on potential risk indicators (PRIs) of individual workforce members for measuring risk and omits an analysis of the organizational-culture vulnerabilities present at the time of the incident. Our analytical approach identifies measures of organizational-culture vulnerability associated with bundled deterrence mitigators to enable evidence-based insider risk management.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Sep 01, 2021
Accession Number
AD1148044

Entities

People

  • Hui-chen B. Liu
  • Isabel Gardner

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Advanced Electronics

DTIC Thesaurus Topics

  • Acquisition
  • Behavioral Sciences
  • Business Administration
  • Case Studies
  • Commerce
  • Computer Access Control
  • Department Of Defense
  • Deterrence
  • Engineering
  • Governments
  • Guarantees
  • Human Resources
  • Insider Threats
  • Literature Surveys
  • Materials
  • Risk
  • Risk Management
  • Software Development
  • Threats
  • Universities
  • Vulnerability

Readers

  • Cybersecurity.
  • Life Cycle Cost Analysis