Low Cost Technical Solutions to Jump Start an Insider Threat Program

December 2016 • Technical Note

George Silowash, Derrick Spooner, Daniel L. Costa, Michael J. Albrethsen

This technical note explores free and low cost technical solutions to help organizations prevent, detect, and respond to malicious insiders.

Publisher:

Software Engineering Institute

CMU/SEI Report Number

CMU/SEI-2016-TN-004

DOI (Digital Object Identifier):

10.1184/R1/6575156.v1

Subjects

Insider ThreatInsider Threat

Abstract

This technical note explores free and low cost technical solutions to help organizations prevent, detect, and respond to malicious insiders. The tools presented address the needs of organizations to have, at a minimum, user activity monitoring, data loss prevention, security information and event management, analytics, and a digital forensics and investigation capability. Implementing tools in all of these categories will help an organization have a successful insider threat program.

Download PDF

Cite This Report

SEI

Silowash, George; Spooner, Derrick; Costa, Daniel; & Albrethsen, Michael. Low Cost Technical Solutions to Jump Start an Insider Threat Program. CMU/SEI-2016-TN-004. Software Engineering Institute, Carnegie Mellon University. 2016. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=484615

IEEE

Silowash. George, Spooner. Derrick, Costa. Daniel, and Albrethsen. Michael, "Low Cost Technical Solutions to Jump Start an Insider Threat Program," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Note CMU/SEI-2016-TN-004, 2016. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=484615

APA

Silowash, George., Spooner, Derrick., Costa, Daniel., & Albrethsen, Michael. (2016). Low Cost Technical Solutions to Jump Start an Insider Threat Program (CMU/SEI-2016-TN-004). Retrieved June 10, 2023, from the Software Engineering Institute, Carnegie Mellon University website: http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=484615

CHI

George Silowash, Derrick Spooner, Daniel Costa, & Michael Albrethsen. Low Cost Technical Solutions to Jump Start an Insider Threat Program (CMU/SEI-2016-TN-004). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2016. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=484615

MLA

Silowash, George., Spooner, Derrick., Costa, Daniel., & Albrethsen, Michael. 2016. Low Cost Technical Solutions to Jump Start an Insider Threat Program (Technical Report CMU/SEI-2016-TN-004). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=484615

BibTex

@techreport{SilowashLowCost2016,
title={Low Cost Technical Solutions to Jump Start an Insider Threat Program},
author={George Silowash and Derrick Spooner and Daniel Costa and Michael Albrethsen},
year={2016},
number={CMU/SEI-2016-TN-004},
institution={Software Engineering Institute, Carnegie Mellon University},
address={Pittsburgh, PA},
url={http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=484615} }

Ask a question about this Technical Note

Software Engineering Institute