2021 NITAM Archives

NITAM 2021 Archives
Insider Threat and Cultural Awareness

The theme of 2021's National Insider Threat Awareness Month was “Insider Threat and Cultural Awareness.” By promoting awareness and understanding of cultural differences within the workforce, you can help your organization and individuals avoid social missteps and prevent unintentional harm that can lead to increased risk of insider threats.

Read the welcome message and endorsement from the Office of the Director of National Intelligence, National Counterintelligence and Security Center Acting Director Michael J. Orlando

2021 DNI Endorsement

June 27, 2022

During September 2021 the Office of the Director of National Intelligence's National Counterintelligence and Security Center will work collaboratively with departments and agencies across the federal government to support the third annual National Insider Threat Awareness Month, which emphasizes the importance of safeguarding our nation by detecting, deterring, and mitigating insider threats.

The United States has suffered a rising number of incidents perpetrated by trusted insiders who have adversely affected public health and safety, national security, and the economic well-being of the United States. The last year and a half presented an increasingly challenging risk environment, with significant adjustments to work and home life, disrupted supply chains, financial insecurity, unreliable or overwhelmed technology capabilities, political and cultural fissures, and serious health concerns. The risks for espionage, violence, unauthorized disclosure, and even unwitting insider threat actions are higher than ever as our adversaries seek to take advantage of our vulnerabilities through increased targeting of insiders.

Nevertheless, we remain strong and committed to addressing these challenges. As you know, pursuant to Reference A all federal departments and agencies with access to classified information are required to maintain a program to deter, detect, and mitigate insider threats. Insider threat programs are comprised of multidisciplinary teams that address insider threats while protecting the privacy and civil liberties of the workforce, maximizing organizational trust, and ensuring positive work cultures that foster diversity and inclusion. Maintaining effective insider threat programs has never been more crucial to the nation's security.

Participating in National Insider Threat Awareness Month will help federal departments' and agencies' programs more effectively detect, deter, and mitigate insider threats by increasing awareness and promoting reporting. Most insider threats emerge over time, with evidence of concerning behaviors or risk indicators surfacing prior to harmful events. Through National Insider Threat Awareness Month events federal employees, private sector stakeholders, and other audiences will not only learn about the serious risks posed by insider threats, but also how to recognize and report anomalous activities to enable early intervention. Insider threat awareness is not about curtailing protected free speech or suppressing legitimate whistleblowing; it is about preventing the exploitation of authorized access to avoid harm to an organization and its resources. Reporting concerning behaviors and risk indicators allows insider threat programs to take proactive measures that can lead to positive outcomes for individuals and organizations.

I encourage you to participate in National Insider Threat Awareness Month this September. There are many ways to get involved, from accessing and distributing awareness materials provided by NCSC to hosting an Insider Threat Awareness Day. A multi-media communications platform for engagement on this topic, including a list of suggested actions and activities, is available at https://www.dni.gov/index.php/ncsc-how-we-work/ncsc-nittf. I look forward to working together with you during this important month.

Signature of Michael J. Olando, Senior Official Performing the Duties of the Director, NCSC
Michael J. Olando
Senior Official Performing the Duties
of the Director, NCSC

Download Letter

Conference Recordings

2021 Insider Threat Virtual Security Conference Recordings

Featured eLearning

Insider Threat Awareness INT101.16
Maximizing Organizational Trust INT270.16

Featured Virtual Instructor-led Courses

Foundations of Insider Threat Management ED520.10
- Student Essays
  - Policy Proposal Plan by Lara Bagwell
    The COVID-19 pandemic has accelerated the shift to permanent telework across the U.S. workforce, necessitating a new framework for how companies conduct risk management. While many workplaces are increasingly remote-friendly, most organizations still use tools and techniques designed for an office-only environment. Toriello-Fite argues that perimeter-based solutions that focus on defending from the outside are no longer enough; to succeed, Insider Threat programs and professionals must add technical and non-technical solutions that look at individuals and their behavior to provide context and to protect against data loss, system misuse, unauthorized disclosure of classified information, or kinetic violence from insiders. She provides a set of recommendations and resources to better mitigate risk in a remote work environment through increased training and education, the use of virtual applications and desktops (VDIs), strengthened coordination between communications, security, and human resources teams, and the use of User Behavior Analytics (UBA).
  - Understanding the Bias Mindset While Determining a Response to an Insider Event by Jason Barnhart
    Biases in Insider Threat reporting and analysis, including cognitive, heuristic, and gender biases, affects how an incident is investigated, managed, and resolved. They can negatively affect an Insider Threat Program (InTP) and deterrence actions if the organization has incorporated perceived or unconscious bias into policy followed throughout the organization. Barnhart argues that while the overall tools and resources for InTPs have improved, bias still presents an area of concern for InT Professionals even when utilizing available tools and techniques. He provides readers with an overview of variations of bias in character or emotion, cognitive or intelligence ability, heuristics, and gender. Barnhart recommends that managers at all levels, especially those who oversee InTPs, understand and can identify bias to ensure that actions taken to mitigate Insider Threats are not thwarted.
  - Bias in Analysis 2.0: Let Sleeping Dogs Lie by Brian Myers
    In the past 20 or 30 years, large-scale events have brought into question the analytical rigor of the Intelligence Community. Brian Myers’ essay argues that a major challenge to combating Insider Threats is the tendency of individuals to bring their own biases into threat analysis. He begins with a history of cognitive biases of intelligence analysis in the early years of the Central Intelligence Agency (CIA) and strides within the intelligence community (IC) that led to the birth of different tools, including the Analysis of Competing Hypotheses (ACH) and the Rating Scale. However, despite these strides forward, he cites hubris within the IC as a barrier to fully overcoming cognitive biases. To prevent bias in the Counter Insider Threat community, Myers recommends Insider Threat Programs (InTPs) use a myriad of training resources and awareness campaigns to build critical thinking skills and to increase community understanding of such programs so that there is an added layer of accountability on such programs. He also provides a set of accessible analytical aids and techniques to combat cognitive biases and to elevate the severity of this issue among InTPs.
  - Insider Threat Risk Assessment and Telework by Karen Toriello-Fite
    The COVID-19 pandemic has accelerated the shift to permanent telework across the U.S. workforce, necessitating a new framework for how companies conduct risk management. While many workplaces are increasingly remote-friendly, most organizations still use tools and techniques designed for an office-only environment. Toriello-Fite argues that perimeter-based solutions that focus on defending from the outside are no longer enough; to succeed, Insider Threat Programs and professionals must add technical and non-technical solutions that look at individuals and their behavior to provide context and to protect against data loss, system misuse, unauthorized disclosure of classified information, or kinetic violence from insiders. She provides a set of recommendations and resources to better mitigate risk in a remote work environment through increased training and education, the use of virtual applications and desktops, strengthened coordination between communications, security, and human resources teams, and the use of User Behavior Analytics (UBA).

Featured Games

Targeted Violence

Featured Job Aids

Featured Videos

NITAM 2021 Public Service Announcement (PSA) Video
CDSE Vigilance Series
The Insider Threat Vigilance Series aids the workforce in understanding how to identify and report insider threat indicators.
- Season One: Turning People Around, Not Turning Them In.
- Season Two: The Critical Pathway
FBI
- Game of Pawns—The Glenn Duffie Shriver Story
  Based on a true story, Game of Pawns is a call for vigilance to the nearly 260,000 American students studying abroad.
- Terminal Risk
  Jointly produced by NCSC, NSA, FBI, and State/DS, this video focused on the counterintelligence and security threats faced by the private sector both at home and abroad.
NITTF
- Any Given Day
  Life stressors impact us all, at work and at home. Watch how one employee struggles to deal with his stressors and how a co-worker responds to a potential insider threat.

NITAM 2021 Archives Insider Threat and Cultural Awareness