The ISE Response to “Insider Threats”
As the ISE has evolved, new issues have come forward. One key issue is how ISE partners might prevent, deter, and detect compromises of information by malicious insiders. Certain policies, reports, and approaches taken at the federal level may also to inform the work in this area by state and local partners, including the private sector.
As reported in the press, after an extensive interagency vetting process, the National Insider Threat Task Force proposed minimum requirements and guidance for insider threat detection and prevention programs (9pp| kb |PDF) for federal executive agencies, the military, and intelligence community elements. The Task Force was established in 2011 by section 6 of Executive Order 13587 to create a Government-wide insider threat program for "deterring, detecting, and mitigating insider threats, including the safeguarding of classified information from exploitation, compromise, or other unauthorized disclosure".
The Task Force is co-chaired by the designees [?] from the Attorney General and the Director of National Intelligence and membership on the Task Force is composed of officers designated by the heads of, the Departments of State, Defense, Justice, Energy, and Homeland Security, the Office of the Director of National Intelligence, the Central Intelligence Agency, and the ISOO, as well as additional agencies. It is staffed and supported by the Office of the National Counterintelligence Executive (ONCIX), which offers useful posters, reports and updates on its website.
The monitoring of staff to mitigate insider threats raises specialized privacy and civil liberties issues.