search menu icon-carat-right cmu-wordmark

CERT Insider Risk Symposium to Focus on Deterrence

CERT Insider Risk Symposium to Focus on Deterrence

July 1, 2024—The Software Engineering Institute’s CERT Division will hold its Insider Risk Management Symposium in person on August 14 at the Cooperative Plaza Conference Center in Arlington, Virginia. The symposium, now in its 11th year, continues to highlight recent research and practice and a forward-looking view on how to create, maintain, and improve insider risk management programs (IRMPs). Registration for this free event is required.

The SEI defines insider threat as the potential for an individual who has or had authorized access to an organization’s critical assets to use their access, either maliciously or unintentionally, to act in a way that could negatively affect the organization. Inside risk is the impact and likelihood of the realization of an insider threat.

The theme for this year’s Insider Risk Management Symposium is The Critical Role of Deterrence in Insider Risk Management. Dan Costa, technical manager of the SEI CERT Division’s Enterprise Threat and Vulnerability Management team and one of the symposium’s organizers, said, “This year, we will explore the critical role of deterrence in a deter-detect-mitigate approach to insider risk management, incorporating both technical and administrative controls to both positively and negatively deter behaviors conducive to insider threats in organizations.”

Participants will hear about the latest challenges and best practices in insider risk management from recognized leaders in insider threat research as well as leading-edge insider threat and IRMP practitioners from government and industry.

“Attendees will come away from the symposium with increased situational awareness of the latest insider threats, practitioners’ actionable recommendations for effectively managing insider risk, and an understanding of the most up-to-date tools and references available to the insider threat research and practitioner community,” said Costa.

Since 2001, the SEI has researched insider risk by gathering and analyzing more than 3,000 real-world insider incidents. Partnerships with federal government agencies and industry organizations have enabled the SEI to produce a broad body of knowledge on insider risk management, including best practices, webinars, courses and certificate programs, and blog posts.

Register to attend the free, in-person Insider Risk Management Symposium 2024 in Arlington, Virginia.