O'Reilly logo

The CERT® Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud) by Randall F. Trzeciak, Andrew P. Moore, Dawn M. Cappelli

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Appendix D. Insider Threat Database Structure

Since 2001, we have been collecting incidents of malicious insider activity that occurred in U.S. organizations. In each of those incidents, the insider was found guilty in a U.S. court of law. To date, we have collected more than 700 cases of insider IT sabotage, fraud, theft of intellectual property, and national security espionage. This data provides the foundation for all of our insider threat research, work in our lab, assessments, workshops, and exercises.

We record actual insider incidents, providing a behavioral and technical framework for characterizing insider activity and analyzing incidents in a meaningful way that can be used to prevent, detect, and respond to insider threats. The recording ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required