Insider Threat Mitigation Responses

Question 1

The Critical Pathway demonstates

Answer 1

Personal predispositions and stressors can lead to the escalation of behavior unless the individual’s stressors are alleviated.

Question 2

PRIs

Answer 2

Potential Risk Factors

Question 3

Behavioral Model

Answer 3

Personal predispositions

Personal/professional stressors

Concerning behaviors

Insider threat behaviors

Question 4

Insider Threat Programs

Answer 4

Deter:

Detect: reporting, monitoring

Mitigate: referral outside of insider threat program (law enforcement), internal actions (allows org to protect info)

Report

Question 5

How do Insider Threat Programs mitigate risks posed by insider threats?

Answer 5

Detect issues early

Follow a risk assessment process

Adequately address potential issues

Question 6

Five primary tenets of insider threat programs

Answer 6

Do no harm: assess situation to avoid exacerbation

Establish and maintain procedures and authorities: maintain general response plan outlines overall goals and responsibilities

Avoid alerting the individual: allows program time to make appropriate response

Protect privacy and civil liberties: ensure personal info properly handled

preserve chain of custody and evidence: early action doesn’t interfere with investigations or operations

Question 7

Reporting

Answer 7

DOD:
Report to: FBI (classified info disclosed or may be disclosed), DITMAC , MILDEP CI Office (list behaviors contacts, activities, indicators and behaviors related to foreign intel, international terrorism, FIE associated cyberspace. Must also report criminal acts to military or appropriate LE

Federal
Report to FBI (classified info disclosed or may be disclosed to foreign power), insider threat follow insider procedures

Industry:
Report to FBI and DCSA actual, prob, or possible espionage, sabotage, terrorism, or subversive activities. DCSA: Adverse info