Challenges & Needs

• No Training Documentation: The client had never taken the time to develop security awareness and training policies and procedures, or any type of program relating to insider threats. As such, they had no formalized policies relating to the broader topic of insider threats.
• Lack of Expertise in Program Development and Rollout: While the client understood the importance of insider threats, they lacked the internal expertise in actually designing, developing, and implementing such a program.
• Unfamiliar with all DoD Insider Threat Requirements: The client was unaware of the specific requirements needed for their insider threat program as stipulated by the DoD.

Our Solution

• Successfully defined project scope, including roles and responsibilities for all internal personnel at the client.
• Identified gaps and deficiencies within the client’s control environment, offering expert recommendations on remediation and next-steps.
• Developed a fully customized insider threat program complete with documented policies, procedures, and processes.
• Conducted in-house security awareness training for all employees in terms of the importance of insider threats and everyone’s roles and responsibilities.

Challenges Solved

• Designed, developed and successfully implemented a highly customized insider threat program.
• Successfully met strict DoD regulatory compliance reporting mandating that an insider threat program be in place.

Value Created

• Helped put in motion a corporate culture that now understands, respects, and truly values the concept of insider threats.
• Created an awareness for employees in terms of understanding the growing insider threat landscape that can affect their organization in a detrimental way.