Gideon T. Rasmussen, CISSP, CISA, CISM, MVP
Professional
 
 
The Insider Threat

The threat posed by insiders should be a concern for every organization. Authorized personnel have the accesses to cause serious damage through theft, sabotage, neglect or error.

CERT and the US Secret Service banded together and conducted a study of insider security incidents. Links below contain the results of their study, an executive summary and best practices to prevent compromise.

Kind regards,

Gideon

Gideon T. Rasmussen
CISSP, CISA, CISM, SCSA
Charlotte, NC
gideon@...

http://www.ussecurityawareness.org
http://www.gideonrasmussen.com

Preventing Insider Sabotage: Lessons Learned from Actual Attacks (Awareness briefing with best practices)
http://www.cert.org/archive/pdf/InsiderThreatCSI.pdf

Insider Threat Study: Computer System Sabotage in Critical Infrastructure Sectors
http://www.cert.org/archive/pdf/insidercross051105.pdf (45 pages)
http://www.cert.org/insider_threat/insidercross.html (executive summary)

Insider Threat Resource Link (Top level link to additional documents)
http://www.cert.org/nav/index_green.html

Posted: Mon May 22, 2006 11:51 pm



Copyright © 2002 - 2007 Gideon T. Rasmussen All Rights Reserved.
Legal Notices