NITAM 2021 Archives
Insider Threat and Cultural Awareness
The theme of 2021's National Insider Threat Awareness Month was “Insider Threat and Cultural Awareness.” By promoting awareness and understanding of cultural differences within the workforce, you can help your organization and individuals avoid social missteps and prevent unintentional harm that can lead to increased risk of insider threats.
Read the welcome message and endorsement from the Office of the Director of National Intelligence, National Counterintelligence and Security Center Acting Director Michael J. Orlando
Conference Recordings
Featured eLearning
- Insider Threat Awareness INT101.16
- Maximizing Organizational Trust INT270.16
Featured Virtual Instructor-led Courses
- Foundations of Insider Threat Management ED520.10
- Student Essays
- Policy Proposal Plan by Lara Bagwell
The COVID-19 pandemic has accelerated the shift to permanent telework across the U.S. workforce, necessitating a new framework for how companies conduct risk management. While many workplaces are increasingly remote-friendly, most organizations still use tools and techniques designed for an office-only environment. Toriello-Fite argues that perimeter-based solutions that focus on defending from the outside are no longer enough; to succeed, Insider Threat programs and professionals must add technical and non-technical solutions that look at individuals and their behavior to provide context and to protect against data loss, system misuse, unauthorized disclosure of classified information, or kinetic violence from insiders. She provides a set of recommendations and resources to better mitigate risk in a remote work environment through increased training and education, the use of virtual applications and desktops (VDIs), strengthened coordination between communications, security, and human resources teams, and the use of User Behavior Analytics (UBA). - Understanding the Bias Mindset While Determining a Response to an Insider Event by Jason Barnhart
Biases in Insider Threat reporting and analysis, including cognitive, heuristic, and gender biases, affects how an incident is investigated, managed, and resolved. They can negatively affect an Insider Threat Program (InTP) and deterrence actions if the organization has incorporated perceived or unconscious bias into policy followed throughout the organization. Barnhart argues that while the overall tools and resources for InTPs have improved, bias still presents an area of concern for InT Professionals even when utilizing available tools and techniques. He provides readers with an overview of variations of bias in character or emotion, cognitive or intelligence ability, heuristics, and gender. Barnhart recommends that managers at all levels, especially those who oversee InTPs, understand and can identify bias to ensure that actions taken to mitigate Insider Threats are not thwarted. - Bias in Analysis 2.0: Let Sleeping Dogs Lie by Brian Myers
In the past 20 or 30 years, large-scale events have brought into question the analytical rigor of the Intelligence Community. Brian Myers’ essay argues that a major challenge to combating Insider Threats is the tendency of individuals to bring their own biases into threat analysis. He begins with a history of cognitive biases of intelligence analysis in the early years of the Central Intelligence Agency (CIA) and strides within the intelligence community (IC) that led to the birth of different tools, including the Analysis of Competing Hypotheses (ACH) and the Rating Scale. However, despite these strides forward, he cites hubris within the IC as a barrier to fully overcoming cognitive biases. To prevent bias in the Counter Insider Threat community, Myers recommends Insider Threat Programs (InTPs) use a myriad of training resources and awareness campaigns to build critical thinking skills and to increase community understanding of such programs so that there is an added layer of accountability on such programs. He also provides a set of accessible analytical aids and techniques to combat cognitive biases and to elevate the severity of this issue among InTPs. - Insider Threat Risk Assessment and Telework by Karen Toriello-Fite
The COVID-19 pandemic has accelerated the shift to permanent telework across the U.S. workforce, necessitating a new framework for how companies conduct risk management. While many workplaces are increasingly remote-friendly, most organizations still use tools and techniques designed for an office-only environment. Toriello-Fite argues that perimeter-based solutions that focus on defending from the outside are no longer enough; to succeed, Insider Threat Programs and professionals must add technical and non-technical solutions that look at individuals and their behavior to provide context and to protect against data loss, system misuse, unauthorized disclosure of classified information, or kinetic violence from insiders. She provides a set of recommendations and resources to better mitigate risk in a remote work environment through increased training and education, the use of virtual applications and desktops, strengthened coordination between communications, security, and human resources teams, and the use of User Behavior Analytics (UBA).
- Policy Proposal Plan by Lara Bagwell
- Student Essays
Featured Games
Featured Job Aids
Featured Videos
- NITAM 2021 Public Service Announcement (PSA) Video
- CDSE Vigilance Series
The Insider Threat Vigilance Series aids the workforce in understanding how to identify and report insider threat indicators. - FBI
- Game of Pawns—The Glenn Duffie Shriver Story
Based on a true story, Game of Pawns is a call for vigilance to the nearly 260,000 American students studying abroad. - Terminal Risk
Jointly produced by NCSC, NSA, FBI, and State/DS, this video focused on the counterintelligence and security threats faced by the private sector both at home and abroad.
- Game of Pawns—The Glenn Duffie Shriver Story
- NITTF
- Any Given Day
Life stressors impact us all, at work and at home. Watch how one employee struggles to deal with his stressors and how a co-worker responds to a potential insider threat.
- Any Given Day