The Silent And
Damaging Threat From Within - The Insider Threat
Why Are Organizations So Vulnerable To The Insider Threat?
Insiders have already
obtained a badge to access significant portions of an organization’s
facilities, a login and password to access the network and significant amounts
of an organizations data.
Insiders also know
what data in an organization has the most value.
Insiders attempting
to commit a malicious action against the government or businesses
will exploit an organizations vulnerabilities and weaknesses that
are many times overlooked or ignored, and will give the Malicious
Insider the greatest chance of success, without being caught.
Insiders in most
cases know what is checked and not checked, and know when they won't
be checked or challenged.
Insider Threat Damages
The
Insider Threat continues to be
a serious problem for the U.S. Government, Department of Defense,
Intelligence Community, Defense Industrial Base Contractors,
Critical Infrastructure Sectors, Universities, businesses, etc.
The damages caused to
U.S. National Security and businesses by Malicious Insiders has been
severe.
Not all
Insider
Threat incidents make the front page of news papers or the evening
news, but they happen a lot more frequently then most
people realize.
Insider Threat actions can compromise an organizations security,
affect the confidentiality, integrity and availability of an
organizations data, information systems and networks, and degrade an
organizations ability to accomplish its mission or business
function.
Whether an organization has just 10
employees or 100,000, the Insider Threat is a security risk.
Information is valuable and in many cases that’s what Malicious Insiders are
after, whether it is Classified Information, Sensitive Information,
Intellectual Property, Trade Secrets, PII, etc. In some cases
Malicious Insiders have
sabotaged networks, or destroyed information systems or erased data.
The NITSIG maintains
the largest public on-line repository of
Insider Threat
Incidents, and has received a great deal of praise for
publishing these incidents on a weekly basis to our various
websites. These incidents provide a very clear picture of how COSTLY
and DAMAGING an Insider Threat incidents can be. In the MILLIONS To
BILLIONS!!!
National Insider
Threat Special Interest Group (NITSIG) Overview
The mission of the NITSIG is to serve
as a Trusted Partner / Information Sharing And Analysis Center for
Insider Threat Mitigation.
There
continues to be a growing demand for individuals to manage or
support Insider Threat Programs.
To address the
urgent need for Insider
Threat Awareness Training, Insider Threat Program Development /
Management Training and Insider
Threat Mitigation strategies, the NITSIG was created.
The NITSIG also
provides Insider Threat Mitigation guidance to businesses and
organizations that are not required by a compliance regulation to implement an
Insider Threat Program.
The
NITSIG provides it's members with a central sourcefor
education, information sharing and collaboration for Insider Threat
Mitigation.
The willingness of NITSIG members to collaborate and
share
information among the membership has been the driving force that has
made the NITSIG very successful.
The NITSIG
Advisory Board is comprised of Insider Threat
Subjects Matter Experts that support government and business Insider
Threat Programs.