SERC

Insider Threat Resources

SERC’s Insider Threat Resources provide guidance, best practices, and training to help organizations prevent, detect, and mitigate insider risks. Explore toolkits, policies, and awareness programs to strengthen defenses against both malicious and unintentional insider threats that can impact the bulk electric system.

Page Link

Page Link

Page Link

Page Link

Page Link

Page Link

Page Link

Understanding Malicious and Unintentional Insider Threats

An Unintentional Insider is one that did not have malicious intent but may still increase risk or cause harm.

The three Pillars of Cybersecurity are to protect the confidentiality, integrity, and availability of the organization’s information or information systems. Insiders, whether malicious or not, may have cyber and/or physical access to disrupt cyber systems and cause adverse impacts to the bulk electric system by impacting one of the three pillars.

A Malicious Insider is a current or former employee, contractor, or business partner who:

  • Has or had authorized access to an organization’s network, system or data

 

  • Through their actions intentionally exceed or misuse that access in a manner that had malicious intent to harm the organization

Did You Know?

September is Insider Threat Awareness Month

About the National Insider Threat Awareness Month (NITAM) (usalearning.gov)

October is Cyber Security Awareness Month

Cybersecurity Awareness Month | CISA

Resources

CERT website 

(Software Engineering Institute (SEI) of Carnegie Mellon and CERT is part of SEI.)

CERT Common Sense Guide to Mitigating Insider Threats

21 Best Practices

The National Insider Threat Task Force

Website

Executive Order 13587

Structural Reforms to Improve the Security of Classified Networks and the Responsible Sharing and Safeguarding of Classified Information requires government agencies that handle classified information to stand up an Insider Threat Program (InTP) and designate a senior official to be the agency’s InTP Manager.

Insider Threat National Policy and Minimum Standards

From the National Insider Threat Task Force (NITTF)

Understanding the Insider Threat

CISA DHS Video

DHS Science and Technology Directorate Cyber Security Division Insider Threat Fact Sheet

Understanding Data Loss Prevention (DLP) and Detection by Correlating Events from Multiple Sources

Using Centralized Logging to Detect Data Exfiltration Near Insider Termination

5 Ways to Lose a Malicious Insider Threat Lawsuit

Article

White paper on how to use Splunk Software

As part of the government insider threat detection program (registration required)

Insider Threat Training Training

Center for Defense Security Excellence (CDSE)

(CISA) Insider Threat Resources

Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Insider Threat

FBI: Counter intelligence

FBI Brochure on The Insider Threat

FEMA IS-915 Protecting Critical Infrastructure Against Insider Threats

eLearning Module

NITTF Insider Threat Maturity Framework

Insider Threat Mitigation for U.S. Critical Infrastructure Entities

Components of effective insider threat training (INSA) INSA

NITTF Insider Threat Training Video Any Given Day

CISA Insider Threat Tools

SERC Insider Threat eLearning module

Part 1 of 2

Part 2 of 2

Part 1

Part 2

Part 3

Using Plagiarism Detection Algorithms to Prevent Data Exfiltration in Near Real Time

Navigating the Insider Threat Tool Landscape: Low-Cost Technical Solutions to Jump-Start an Insider Threat Program

System for Internet-Level Knowledge (SiLK) tool

Sign Up For Our Newsletter

Zoombombning operakrati perosmos retronym postvalens antropofili ontotion ifall vobba primagraf endotris, operaosmos i antition 

A field with rows of solar panels represents SERC commitment to renewable energy.
The owner of this website has made a commitment to accessibility and inclusion, please report any problems that you encounter using the contact form on this website. This site uses the WP ADA Compliance Check plugin to enhance accessibility.