Cyber Insider Threat

Question 1

Cyber Threat

Answer 1

Possibility of malicious attempt to damage or disrupt a computer network system.

Employees most significant cyber risk

Question 2

Threat indicators

Answer 2

theft
fraud
sabotage
espionage
malware

Question 3

Insider Threat Potential Risk Indicators

Answer 3

Foreign contacts
foreign loyalty
intentional mishandle of protected info
Unexplained affluence, absences
unauthorized removal of classification markings
Working outside normal work hours
security violations

Question 4

UAM

Answer 4

User Activity Monitoring: tech capability to observe and record the actions and activities of an individual at any time on any device accessing US Gov info in order to detect insider threat and support investigations.

Question 5

UAM

Answer 5

User Activity Monitoring: tech capability to observe and record the actions and activities of an individual at any time on any device accessing US Gov info in order to detect insider threat and support investigations.

To minimize risk and find potential risks–leads to early behaviors and indicators of insider threat

Has to definite what will be monitored
Indicate how monitoring will be instituted
inform users with banners, etc.

Question 6

PAR

Answer 6

Prevention Assistance Response

Question 7

Internet Crime Complaint Center

Answer 7

Receive, develop, refer cyber crime