Insights from Insider Threat Detection Tools Workshop
Abstract
On June 5, 2019, the National Insider Threat Special Interest Group (NITSIG), in partnership with the University of Maryland's Applied Research Laboratory for Intelligence and Security (ARLIS) and the Johns Hopkins Applied Physics Laboratory (APL) held a workshop on Insider Threat Detection Tools (ITDTs). Fourteen (14) individuals from the Insider Threat Community attended the workshop and contributed to the formulation of the set of key challenges facing the Insider Threat Community discussed below. All attendees have a role in administering an insider threat program, have conducted research on insider threat, have served as an end-user/analyst of detection tool output, or have experience in some combination of these functions. Participants represented government agencies and industry. Vendors were excluded from the workshop to allow open discussion of user experiences with current tools. Participants names and organizational affiliations are not included in this summary and there is no attribution of contributions to individual participants or to the agencies/organizations they represent. On February 11, 2020 the NITSIG in partnership with University of Maryland, held a follow-up Workshop on Insider Threat Detection Tools, at which the conclusions from this technical report were included in the discussion and a Checklist for Insider Threat Detection Tools Acquisition was developed. The Checklist is included in the recommendations section of this report.
Document Details
- Document Type
- Technical Report
- Publication Date
- Mar 10, 2020
- Accession Number
- AD1184317
Entities
People
- Kelly M. Jones
- Marilyn J. Maines
- Michelle E. Morrison
- Petra A. Bradley