Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type


Publication Date


SEI Technologies Forum: The Insider Threat: Lessons Learned from Actual Insider Attacks

  • October 2011
  • By Randall F. Trzeciak3507
  • In this 2011 webinar, Randy Trzeciak discusses the CERT Insider Threat Center, and the mitigation strategies and lessons learned from actual insider attacks.
  • Insider Threat
  • Publisher: Software Engineering Institute
  • Watch

    Loading the video......
  • Abstract

    The Insider Threat Center at CERT, which has been researching insider threats since 2001, has built an extensive library and comprehensive database containing more than 700 actual cases of insider cyber crimes. This presentation will describe findings from our analysis of three primary types of insider cyber crimes: IT sabotage, theft of information, and fraud.  All CERT insider threat research focuses on both the technical and behavioral aspects of actual compromises. This presentation will describe who committed the crimes, their motivation, organizational issues surrounding the incidents, methods of carrying out the attacks, impacts, and precursors that could have served as indicators to the organization in preventing the incident or detecting it earlier. It will also convey the "big picture" of the insider threat problem - the complex interactions, relative degree of risk, and unintended consequences of policies, practices, technology, insider psychological issues, and organizational culture over time.

    About the Author

    Trzeciak is currently a senior member of the technical staff at CERT. He is the technical team lead of the Insider Threat Research team; a team focusing on insider threat research; threat analysis and modeling; assessments; and training.  Trzeciak has more than 20 years pf experience in software engineering; database design, development, and maintenance; project management; and information security. He also is an adjunct professor at Carnegie Mellon's Heinz College, Graduate School of Information Systems and Management. Trzeciak holds a master's degree in management from the University of Maryland and bachelor's degrees in management information systems and business administration from Geneva College.

  • Slides