Best Practices for Protecting Against Insider Threat

CERT, Carnegie Mellon University Software Engineering Institute’s center for conducting and coordinating information security research, has written the Common Sense Guide to Prevention and Detection of Insider Threats, Version 3.1.

In describing the audience for the guide the document notes “Insider threats are influenced by a combination of technical, behavioral, and organizational issues, and must be addressed by policies, procedures, and technologies. Therefore, it is important that management, human resources, information technology, software engineering, legal, security staff, and the “owners” of critical data understand the overall scope of the problem and communicate it to all employees in the organization.”

At 88 pages, the CERT guide is fairly comprehensive. It provides a range of best practices addressing the different aspects noted above–technical, behavioral, and organizational issues–that impact the insider security threat.