Positive Deterrence for Reducing Insider Threat Collection
• Collection
Publisher
Software Engineering Institute
Topic or Tag
Abstract
Organizations struggle to implement effective insider risk management programs because insiders present unique challenges to cybersecurity. Traditional insider risk practices focus on extrinsic controls that pressure employees into compliance, which, taken too far, can exacerbate the insider threat. Positive deterrence practices complement traditional practices by fostering employees’ intrinsic motivation to act in the interests of the organization and build their sense of commitment to the organization, the work, and their co-workers. SEI research provides actionable, evidence-based guidance to apply positive deterrence as a complement to traditional practices in a way that provides a better balance for organizations’ insider threat programs.
Collection Items
A Roadmap for Incorporating Positive Deterrence in Insider Risk Management
• Blog Post
By Andrew P. Moore
In the Wells Fargo cross-selling scandal of 2016, bank employees are reported to have created several million fraudulent savings and checking accounts in the name of Wells Fargo clients. While …
Read
Game-Theoretic Modeling and Analysis of Insider Compliance with Security Policy
• Conference Paper
By Andrew P. Moore, Stephanie Grzenia, Jose A. Morales, Cody Ickes, Joshua Fallon, William Casey
In this paper, the authors present our work in progress applying game-theoretic modeling and analysis to their study of the effects of policy compliance requirements on shifting insider motivation.
Read
Common Sense Guide to Mitigating Insider Threats, Seventh Edition
• Technical Report
By Software Engineering Institute
The guide describes 22 best practices for mitigating insider threat based on the CERT Division's continued research and analysis of more than 3,000 insider threat cases.
Read
Reducing Insider Risk Through Positive Deterrence
• Article
By Andrew P. Moore, Carrie Gardner, Denise M. Rousseau (Carnegie Mellon University)
In this article, the authors describe why and how insider risk management programs (IRMPs) should consider promoting a set of evidence-based management practices that are called positive deterrence.
Read
Positive Deterrence and its Role in Countering Extremist Acts against Organizations
• Presentation
By Andrew P. Moore
This presentation argues for insider risk management programs (IRMPs) to adopt evidence-based workforce management practices that we call positive deterrence as a complement to existing command-and-control approaches to reduce insider …
Learn More
Shaping Organizational Culture through Balanced Deterrence
• Conference Paper
By Andrew P. Moore, Sarah Miller, Angela Horneman, Denise M. Rousseau (Carnegie Mellon University)
This presentation describes an approach called balanced deterrence that helps shape organizational culture to better counter insider threat through improved management-employee relations while sustainably supporting the organizational mission.
Read
Modeling Interventions for Insider Threat
• Conference Paper
By Luke J. Osterritter, Kathleen Carley (Carnegie Mellon School of Computer Science)
This paper presents an agent-based model that simulates a way in which social interventions can curb or eliminate the occurrence of malicious insider attacks, or “insider threats”, within an organization.
Read
Balancing Organizational Incentives to Counter Insider Threat
• Conference Paper
By Andrew P. Moore, Tracy Cassidy, Michael C. Theis, Daniel Bauer, Denise M. Rousseau (Carnegie Mellon University), Susan B. Moore
This paper describes a missing dimension of most organizations' insider threat defense, one that explicitly considers positive incentives for attracting individuals to act in the interests of the organization.
Read
Three Practice Areas for Using Positive Incentives to Reduce Insider Threat
• Blog Post
By Andrew P. Moore
In the 2016 Cyber Security Intelligence Index, IBM found that 60 percent of all cyber attacks were carried out by insiders. One reason that insider threat remains so problematic is …
Read
Positive Incentives for Reducing Insider Threat
• Podcast
By Andrew P. Moore, Daniel Bauer
Andrew Moore and Daniel Bauer highlight results from our recent research that suggests organizations need to take a more holistic approach to mitigating insider threat.
Listen
The Critical Role of Positive Incentives for Reducing Insider Threats
• Technical Report
By Andrew P. Moore, Samuel J. Perl, Jennifer Cowley, Matthew L. Collins, Tracy Cassidy, Nathan M. VanHoudnos, Palma Buttles-Valdez, Daniel Bauer, Allison Parshall, Jeff Savinda, Elizabeth A. Monaco, Jamie L. Moyes, Denise M. Rousseau (Carnegie Mellon University)
This report describes how positive incentives complement traditional practices to provide a better balance for organizations' insider threat programs.
Read