DID YOU KNOW? DTIC has over 3.5 million final reports on DoD funded research, development, test, and evaluation activities available to our registered users. Click
HERE to register or log in.
Accession Number:
AD1044922
Title:
Common Sense Guide to Mitigating Insider Threats, Fifth Edition
Corporate Author:
CARNEGIE-MELLON UNIV PITTSBURGH PA PITTSBURGH United States
Report Date:
2016-12-01
Abstract:
This fifth edition of the Common Sense Guide to Mitigating Insider Threats provides the most current recommendations of the CERT Division part of Carnegie Mellon Universitys Software Engineering Institute, based on an expanded corpus of more than 1,000 insider threat cases and continued research and analysis. It introduces the topic of insider threats, explains its intended audience and how this guide differs from previous editions, defines insider threats, and outlines current patterns and trends. The guide then describes 20 practices that organizations should implement across the enterprise to prevent and detect insider threats, as well as case studies of organizations that failed to do so. Each practice includes features new to this edition challenges to implementation, quick wins and high-impact solutions for small and large organizations, and relevant security standards. This edition also focuses on six groups within an organizationHuman Resources, Legal, Physical Security, Data Owners, Information Technology, and Software Engineeringand maps the relevant groups to each practice. The appendices provide a revised list of information security best practices, a new mapping of the guides practices to established security standards, a new breakdown of the practices by organizational group, a new look at considerations for employee privacy, and new checklists of activities for each practice.
Descriptive Note:
Technical Report
Pages:
0175
Distribution Statement:
Approved For Public Release;
Contract Number:
FA8721-05-C-0003
File Size:
1.53MB
