September is National Insider Threat Awareness Month (NIATM), which is a collaborative effort between the National Counterintelligence and Security Center (NCSC), National Insider Threat Task Force (NITTF), Office of the Under Secretary of Defense Intelligence and Security (USD(I&S)), Department of Homeland Security (DHS), and Defense Counterintelligence and Security Agency (DCSA) to emphasize the importance of detecting, deterring, and reporting insider threats.
"During this second annual Insider Threat Awareness Month, we emphasize the importance of safeguarding our Nation from the risks posed by insider threats. Past compromises of national security information by insiders have made America less safe by allowing our adversaries unauthorized access to information. These actions, coupled with incidents of senseless loss of life perpetrated by insiders have highlighted the need for uniform engagement," says William R. Evanina, Director of the National Counterintelligence Security Center. "As a nation, we are committed to protecting critical information and our citizenry while preserving privacy and civil liberties. Proactive insider threat reporting can deter, detect, and mitigate insider threats. It provides an opportunity for early intervention, strengthens our nation's resiliency, and fosters rehabilitative outcomes for individuals at risk. This can reduce acts of harm to self or others, prevent the loss or compromise of classified information, and minimize damage to organizations."
The focus on this year's NIATM is resilience. Themes include safety, security, the counterintelligence threat, recognizing and reporting indicators, proactive nature of Insider Threat Programs, and respect for privacy and civil liberties:
• Insider incidents impact public and private organizations causing damage to national security, loss of life, the loss or compromise of classified information, and billions of dollars annually in lost revenue related to trade secret theft, fraud, sabotage, damage to an organization’s reputation, acts of workplace violence, and more.
• Compromises by insiders have made America less safe by allowing our adversaries to access classified information, change tactics and avoid detection, and learn where we are most vulnerable.
• Most insider threats display concerning behaviors or risk indicators prior to engaging in negative events.
• Insider Threat programs are designed to manage risks associated with malicious or unwitting insiders while protecting privacy and civil liberties.
Reporting concerning behaviors and risk indicators allows insider threat programs to take proactive measures that can lead to positive outcomes for individuals and mitigate risk for organizations.
• If you see something, say something.
• Emphasize specific reporting procedures, protocol, and POC at your organization.
• If you see something, say something.
• Emphasize specific reporting procedures, protocol, and POC at your organization.
Here are some ways you and your organization can participate and continue to raise awareness:
Leading up to National Insider Threat Awareness Month
• Download the Insider Threat Sentry app to receive exclusive products and updates
• Develop a plan to participate in NITAM by identifying strategies and tactics most applicable to your workforce.
• Work with your leadership and communications/public affairs department to gain buy in for participation.
• Coordinate with key stakeholders for access to awareness materials and guidance to make NITAM impactful for your organization.
• Devise a plan to capture metrics related to your NITAM activities
• Download the Insider Threat Sentry app to receive exclusive products and updates
• Develop a plan to participate in NITAM by identifying strategies and tactics most applicable to your workforce.
• Work with your leadership and communications/public affairs department to gain buy in for participation.
• Coordinate with key stakeholders for access to awareness materials and guidance to make NITAM impactful for your organization.
• Devise a plan to capture metrics related to your NITAM activities
During National Insider Threat Awareness Month
Promote NITAM to your workforce and stakeholders.
• Engage leadership in messaging with an email or video to the workforce.
• Promote NITAM on social media platforms. Consider cross-promoting and reposting NITAM messaging from key stakeholders.
• Feature Insider Threat Awareness messaging in town halls, newsletters, and other internal media.
• Show security shorts and training videos, including the award-winning Vigilance Video Series season one and season two and 2020’s Resilience animation
• Post Insider Threat Awareness Posters in your workspace.
• Feature Insider Threat Awareness training, eLearning games, case studies, and videos throughout the month.
• Ensure everyone in the Insider Threat Program should be prepared to offer a concise message (i.e. “elevator speech) about your program in three minutes or less.
• Engage leadership in messaging with an email or video to the workforce.
• Promote NITAM on social media platforms. Consider cross-promoting and reposting NITAM messaging from key stakeholders.
• Feature Insider Threat Awareness messaging in town halls, newsletters, and other internal media.
• Show security shorts and training videos, including the award-winning Vigilance Video Series season one and season two and 2020’s Resilience animation
• Post Insider Threat Awareness Posters in your workspace.
• Feature Insider Threat Awareness training, eLearning games, case studies, and videos throughout the month.
• Ensure everyone in the Insider Threat Program should be prepared to offer a concise message (i.e. “elevator speech) about your program in three minutes or less.
Host National Insider Threat Awareness Month Events and Activities
• Host an Insider Threat Awareness Day: A live or virtual forum or meeting featuring guest speakers and leadership, informational briefings, and Q&A sessions with the Insider Threat Program (Vigilance Campaign Guidance/Hosting a Virtual Forum Job Aid)
• Poster or Messaging Theme Contests
• Gaming sessions: Team competitions featuring Insider Threat Trivia Twirl, Crossword, Concentration or other eLearning Games
• Host an Insider Threat Awareness Day: A live or virtual forum or meeting featuring guest speakers and leadership, informational briefings, and Q&A sessions with the Insider Threat Program (Vigilance Campaign Guidance/Hosting a Virtual Forum Job Aid)
• Poster or Messaging Theme Contests
• Gaming sessions: Team competitions featuring Insider Threat Trivia Twirl, Crossword, Concentration or other eLearning Games
Participate in Community Insider Threat Awareness Events
• Insider Threat Virtual Security Conference on September 3
• Insider Threat Virtual Security Conference on September 3
After National Insider Threat Awareness Month
• Evaluate messaging campaign effectiveness (raise awareness, increase reporting, introduce/familiarize the workforce with the Insider Threat Program).
• Gather metrics from online activities, social media, and live event attendance.
• Participate in surveys and data calls with key stakeholders.
• Provide feedback, best practices, and ideas for future NITAM implementation and lessons learned.
• Continue to champion key insider threat awareness messaging and promote reporting year round.
For more information, please visit https://www.cdse.edu/itawareness/index.html
