CISA’s Insider Threat Mitigation Resources

An insider is a person who has or had access to or knowledge of an organization’s resources, facilities, equipment, or systems. Insider threat means the potential for an insider to use that access to harm the organization, which may include intentional or unintentional acts that negatively affect the integrity, confidentiality, and availability of the organization, its data, personnel, or facilities. It is very important to mitigate these risks by understanding the threats posed and building a comprehensive insider threat mitigation program that accounts for operational, legal, and regulatory considerations. CISA has created these free resources to help government and other organizations establish these types of programs.

• Insider Threat Mitigation
• Insider Threat Mitigation Guide
• Insider Threat Mitigation Resources & Tools
• Insider Threat Mitigation Fact Sheet