When we talk about cybersecurity and the federal government we are usually referencing the myriad threats posed to national information security from external actors – that is nation states, international hacktivists groups, and cyber criminals. One often overlooked, but just as dangerous to national cybersecurity, are threats that come from the inside; just look at the damage that the Snowden revelations did to diplomatic relations and the ability to protect US interests at home and abroad.
However, the insider threat doesn’t necessarily mean a rogue individual within an organization whose primary objective is to steal information, expose data, or compromise national security. With the proliferation of endpoints as more and more agencies adopt mobile platforms and remote work environments, the threat from insiders can be as much accidental as it is deliberate. A lost tablet, or a stolen mobile phone can expose vast amounts of classified and confidential information vital to the functioning of the federal government and impact the privacy, safety, and security of citizens.
The risk from insiders, whether malicious or inadvertent, presents numerous challenges to federal agencies. In this brief, researched by Guidance Software, learn how to mitigate the risk of insider threats with endpoint analytics and incident response. Highlighted topics include early alerts, improving detection, access to endpoint data, protecting data as evidence, and matching remediation to protection needs. You can download a copy of the brief here…