Posted on by Insider Threatin
You've known this blog as the Insider Threat blog, and this will continue to be your go-to source as we share our findings and explore the impact insider threat has on information technology and human resources practices and policies. Our new, expanded content will cover topics across a more broad spectrum that will continue to include insider threat topics as well as others related to how organizations ensure their resilience against disruptive events like cyberattacks.
Our cybersecurity researchers will discuss emerging concepts, application of practices, and results of our work in three key areas:
Leading an organization requires much more than the latest piece of technology; management practices have not always kept pace with the technical landscape. In fact, we often see that technology adoption outpaces updates to policies and processes. Cybersecurity risk and resilience (CRR) researchers in the CERT Division of the SEI focus on technical and process capabilities to protect and sustain assets that are important to the nation's cyber-dependent mission.
The SEI's CRR researchers strive to ensure that critical assets continue to operate during and after disruptive events. This resilience is accomplished by deep technical research and rigorous validation of capabilities within DoD, federal government, and private industry programs.
As a federally funded research and development center, we at the SEI are committed to serving as subject matter experts who are free from conflict of interest or politics. In our posts, we may refer to current events, but we will always be independent third-party advisors who use a scientific approach to recommend improvements to secure the nation and its critical infrastructure.
Check back often or subscribe to the feed for this blog to join our community and learn how to address risk and resilience in your organization!