Reposted from Emergency Management and Response - Information Sharing and Analysis Center (EMR-ISAC)
Organizations, agencies and businesses are at risk from insider threats, employees who may use their position within the workplace to cause the organization or other employees harm through negligence or malicious intent. Examples can include workplace violence, sabotage, theft or unintentionally clicking on an email containing a phishing or ransomware attack. September has been deemed “Insider Threat Awareness Month” by a partnership of federal agencies. The goal of this campaign is to raise awareness of insider threat risks and educate people on how to recognize indicators and report suspicious activities. While many federal agencies and the military may need to focus on espionage, emergency responder agencies could focus more on cybersecurity phishing and ransomware education and employee morale. Unhappy or disenfranchised employees are more likely to commit acts consistent with what is considered an insider threat, including violence. The Office of the Director of National Intelligence (ODNI) offers free insider threat training through its National Insider Threat Task Force. The free training could be incorporated into a staff briefing or internal company training program. ODNI also offers a host of other guides, multi-media and links to other federal resources. During this month, emphasize the importance of safeguarding our workplaces, fellow employees and our nation from the risks posed by insider threats and continue to work diligently to mitigate these risks.
See Original Post