CMU SEI Blog: Derrick Spooner

Derrick Spooner

Blog Posts

Functional Requirements for Insider Threat Tool Testing

Because of the scope and scale of the insider threat, the SEI recommends that organizations adopt a use-case-based approach to insider risk mitigation....

March 19, 2020 • By Robert M. Ditmore, Derrick Spooner

Windows Event Logging for Insider Threat Detection

In this post, I continue my discussion on potential low-cost solutions to mitigate insider threats for smaller organizations or new insider threat programs....

May 22, 2019 • By Derrick Spooner

Navigating the Insider Threat Tool Landscape

Mitigating insider threats is a multifaceted challenge that involves the collection and analysis of data to identify threat posed by many different employee types....

June 12, 2018 • By Derrick Spooner

Privileged Account Management (Part 11 of 20: CERT Best Practices to Mitigate Insider Threats Series)

The eleventh practice described in the newly released edition of the Common Sense Guide to Mitigating Insider Threats is Practice 11: Institute stringent access controls and monitoring policies on privileged …

June 20, 2017 • By Derrick Spooner

In Insider Threat

Password and Account Management (Part 10 of 20: CERT Best Practices to Mitigate Insider Threats Series)

The tenth practice described in the newly released edition of the Common Sense Guide to Mitigating Insider Threats is Practice 10: Implement strict password and account management policies and practices. …

June 13, 2017 • By Derrick Spooner

In Insider Threat

Common Sense Guide to Mitigating Insider Threats - Best Practice 19 (of 19)

Hello, this is Derrick Spooner, Cyber Threat Solutions Engineer for the CERT Program, with the last of 19 blog posts that describe the best practices fully documented in the fourth …

February 12, 2013 • By Derrick Spooner, CERT Insider Threat Center

In Insider Threat

Common Sense Guide to Mitigating Insider Threats - Best Practice 5 (of 19)

Hello, this is Derrick Spooner, Cyber Threat Solutions Engineer for the CERT Program, with the fifth of 19 blog posts that describe the best practices fully documented in the fourth …

Software Engineering Institute

SEI Blog

Derrick Spooner

DIGITAL LIBRARY PUBLICATIONS

SEND A MESSAGE TO DERRICK

Derrick Spooner

DIGITAL LIBRARY PUBLICATIONS

SEND A MESSAGE TO DERRICK

Blog Posts

Functional Requirements for Insider Threat Tool Testing

March 19, 2020 • By Robert M. Ditmore, Derrick Spooner

In Insider Threat

Windows Event Logging for Insider Threat Detection

May 22, 2019 • By Derrick Spooner

In Insider Threat

Navigating the Insider Threat Tool Landscape

June 12, 2018 • By Derrick Spooner

In Insider Threat

Privileged Account Management (Part 11 of 20: CERT Best Practices to Mitigate Insider Threats Series)

June 20, 2017 • By Derrick Spooner

In Insider Threat

Password and Account Management (Part 10 of 20: CERT Best Practices to Mitigate Insider Threats Series)

June 13, 2017 • By Derrick Spooner

In Insider Threat

Common Sense Guide to Mitigating Insider Threats - Best Practice 19 (of 19)

February 12, 2013 • By Derrick Spooner, CERT Insider Threat Center

In Insider Threat

Common Sense Guide to Mitigating Insider Threats - Best Practice 5 (of 19)

January 10, 2013 • By Derrick Spooner, CERT Insider Threat Center

In Insider Threat

Get updates on our latest work.