The CERT Insider Risk Team has developed a new standard for storing and exchanging insider threat case data. The Insider Incident Data Exchange Standard (IIDES) includes structures for collecting and analyzing a variety of technical, non-technical, organizational, and incident response information to meet the varied needs of researchers and practitioners. IIDES is designed to allow practitioners to build, maintain, deidentify, and share insider threat case data with an eye toward building more robust data for analysis and insights that benefit their organizations and the whole community.
What Attendees Will Learn:
- How IIDES structures insider incident information
- Who can benefit from using IIDES
- How to get started with IIDES
- How to contribute to IIDES
Who Should Attend?
- insider risk program managers
- insider risk tool and application developers
- insider threat researchers
- insider threat analysts
About the Speakers
Austin Whisnant is a Senior Researcher with the Insider Risk team at the Software Engineering Institute, part of Carnegie Mellon University. Her research interests include machine learning and AI, risk analysis, modeling and simulation, and cybersecurity policy and ethics. She has worked on projects that include large-scale network traffic analysis, cyber workforce training, and statistical analysis of risk. She was previously a lecturer at both the University of Pittsburgh’s Graduate School of Public and International Affairs and Carnegie Mellon University’s Institute for Politics and Strategy. She holds a Master of Science in Telecommunications from the University of Pittsburgh and a Bachelor of Science from Furman University in Computer Science and Mathematics.
Dan Costa is the Technical Manager of the Enterprise Threat and Vulnerability Management team in the CERT Division of the Carnegie Mellon University Software Engineering Institute. Dan leads the research and engineering efforts of the Insider Risk and Applied Network Defense teams, which conduct empirical research and develop solutions that enable organizations to effectively manage insider risks and advance the state of the practice in technical cybersecurity assessments.
Dan holds a Bachelor of Science in Computer Science degree from Bucknell University and is an adjunct instructor and advisor in the H. John Heinz III College at Carnegie Mellon University.
