"CISA Launches Insider Threat Self-Assessment Tool"

The U.S. Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) released the Insider Threat Risk Mitigation Self-Assessment Tool, which aims to help public and private sector organizations assess their vulnerability to insider threats. According to the agency, the tool prompts users to answer a set of questions and then provides feedback based on given answers. The tool is intended to help users increase their understanding of insider threats so that they can take the proper steps to create their own programs for prevention and mitigation. David Mussington, CISA's executive assistant director for infrastructure security, emphasizes that although much security efforts are focused on external threats, the biggest threat can come from inside the organization. CISA urges all its partners, including small and medium businesses that may have limited resources, to utilize the new tool to develop a plan for preventing insider threats. In a recent announcement, the agency noted that insider threats could pose significant risks to organizations because of the internal perpetrators' institutional knowledge and the trust put in them. CISA officials say these threats can derive from current or former employees, contractors, and others with inside knowledge. Insider threats can lead to the compromise of sensitive information, reputational damage for an organization, loss of revenue, intellectual property theft, and more. This article continues to discuss CISA's Insider Threat Risk Mitigation Self-Assessment Tool and how insider threats pose risks to organizations.

GovInfoSecurity reports "CISA Launches Insider Threat Self-Assessment Tool"