Insider Threat

Informationen zum Autor Dr. Michael Gelles consults in security, intelligence, and law enforcement for Deloitte in Washington, D.C. and is a thought-leader on the security risks, asset exploitation, and workplace violence associated with insider threat. Dr. Gelles is a frequent lecturer and has written numerous articles and book chapters on organizational management, forensic psychology, law enforcement, terrorism, and counterintelligence. Klappentext Insider Threat: Detection, Mitigation, Deterrence and Prevention presents a set of solutions to address the increase in cases of espionage, embezzlement, sabotage, and identity theft from current or former employees. The book provides a complete roadmap for developing an insider threat program within any organization, focusing on management, training, ethical, and legal concerns. In addition, the book includes tactics on how to correlate human behavioral indicators and data analytic tools into a seamless system for protecting an organization's critical assets from insiders intending to do harm. Users will find a resource that presents robust mitigation strategies that will interrupt the forward motion of a potential insider who intends to do harm to a company or its employees. Inhaltsverzeichnis Chapter 1: Introduction - A Leader's Guide Chapter 2: Challenges to Mature an Insider Threat Program Chapter 3: From Bricks and Mortar to Bits and Bytes Chapter 4: Identifying Functional Ownership, Establishing the ITWG, and Developing CONOPs for Programmatic Success Chapter 5: Identifying Critical Indicators in Organizational Data Chapter 6: Establishing an Organizational Risk Appetite Chapter 7: Risk Management Using Data Analytics Chapter 8: Information Security and Technology Integration Chapter 9: Cyber Security and Insider Threat Mitigation Chapter 10: Vendor Analysis and Supply Chain Risk Mitigation Chapter 11: Employee Engagement: Critical to Mitigating the Risk of Insider Threat Chapter 12: Workplace Violence and Insider Threat Chapter 13: Monitoring and Investigating Chapter 14: Privacy and Data Considerations When Developing an Insider Threat Program Chapter 15: What the Future Holds Appendices Appendix A: What data is needed to proactively identify potential insiders? Appendix B: Potential Risk Indicators Appendix C: How do I position an insider threat program to my workforce? Appendix D: What are the skill sets that a leading program needs to have? Appendix E: What capabilities differentiate an industry-leading program? Appendix F: Insider Threat Program Governance Structure Appendix G: Business Assurance/Insider Threat Working Group Charter Appendix H: How Do I Assess The Maturity of My Insider Threat Program? Appendix I: Business Rule Development Appendix J: How Do I Address Insider Threat From A Policy And Training Perspective? Appendix K: Use Case: E-Mail Exfiltration Appendix L: FAQs ...

Autorentext
Dr. Michael Gelles consults in security, intelligence, and law enforcement for Deloitte in Washington, D.C. and is a thought-leader on the security risks, asset exploitation, and workplace violence associated with insider threat. Dr. Gelles is a frequent lecturer and has written numerous articles and book chapters on organizational management, forensic psychology, law enforcement, terrorism, and counterintelligence.

Klappentext

Insider Threat: Detection, Mitigation, Deterrence and Prevention presents a set of solutions to address the increase in cases of espionage, embezzlement, sabotage, and identity theft from current or former employees. The book provides a complete roadmap for developing an insider threat program within any organization, focusing on management, training, ethical, and legal concerns. In addition, the book includes tactics on how to correlate human behavioral indicators and data analytic tools into a seamless system for protecting an organization's critical assets from insiders intending to do harm. Users will find a resource that presents robust mitigation strategies that will interrupt the forward motion of a potential insider who intends to do harm to a company or its employees.

Inhalt

Chapter 1: Introduction - A Leader's Guide Chapter 2: Challenges to Mature an Insider Threat Program Chapter 3: From Bricks and Mortar to Bits and Bytes Chapter 4: Identifying Functional Ownership, Establishing the ITWG, and Developing CONOPs for Programmatic Success Chapter 5: Identifying Critical Indicators in Organizational Data Chapter 6: Establishing an Organizational Risk Appetite Chapter 7: Risk Management Using Data Analytics Chapter 8: Information Security and Technology Integration Chapter 9: Cyber Security and Insider Threat Mitigation Chapter 10: Vendor Analysis and Supply Chain Risk Mitigation Chapter 11: Employee Engagement: Critical to Mitigating the Risk of Insider Threat Chapter 12: Workplace Violence and Insider Threat Chapter 13: Monitoring and Investigating Chapter 14: Privacy and Data Considerations When Developing an Insider Threat Program Chapter 15: What the Future Holds Appendices Appendix A: What data is needed to proactively identify potential insiders? Appendix B: Potential Risk Indicators Appendix C: How do I position an insider threat program to my workforce? Appendix D: What are the skill sets that a leading program needs to have? Appendix E: What capabilities differentiate an industry-leading program? Appendix F: Insider Threat Program Governance Structure Appendix G: Business Assurance/Insider Threat Working Group Charter Appendix H: How Do I Assess The Maturity of My Insider Threat Program? Appendix I: Business Rule Development Appendix J: How Do I Address Insider Threat From A Policy And Training Perspective? Appendix K: Use Case: E-Mail Exfiltration Appendix L: FAQs