about us
CERT, the home of the well-known CERT(R) Coordination Center, is located at Carnegie Mellon University's Software Engineering Institute. We study internet security vulnerabilities, research long-term changes in networked systems, and develop information and training to help you improve security.
take the tour

CERT Spotlight: Mitigating Threats from Within

CERT Common Sense Guide to Mitigating Insider Threats Fourth Edition

An insider is anyone who has or had authorized access to an organization's network, system, or data. Current or former employees, contractors, and business partners are in a unique position to damage an organization's information systems, intellectual property, finances, and reputation. A recent survey reported that a quarter of electronic crimes with identifiable perpetrators were committed by insiders.

For a decade, the CERT Program has studied how to prevent, detect, and respond to insider threats. The recently published fourth edition of Common Sense Guide to Mitigating Insider Threats, sponsored by the Department of Homeland Security, updates and expands the CERT Insider Threat Center's recommendations for a broad range of organizational stakeholders.

For this edition, the CERT Insider Threat Center delved into its expanding database of more than 700 cases of insider threat. Based on this and other CERT research, the Common Sense Guide recommends 19 new or revised best practices for mitigating the insider threat. Team tables make it easy for members of different organizational groups, such as IT, software engineering, and human resources, to find and apply the most relevant practices. The guide also maps each practice to existing standards, lists implementation challenges for large and small organizations, and outlines quick wins and high-impact solutions.

Download Common Sense Guide to Mitigating Insider Threats, 4th Edition, or explore more of the CERT Insider Threat Center's work.

Upcoming Events

Managing Insider Threat

Virtual Event, August 8, 2013
How secure is your organization's cyber environment? Are you prepared to combat insider threat? Attend the free virtual event Managing the Insider Threat; What Every Organization Should Know on August 8, 2013. You will learn about recent insider threat research and development.

MTEM 2013, July 17-18, 2013
Attend the 2013 Malware Technical Exchange Meeting (MTEM) on July 17-18, 2013. At MTEM 2013, practitioners and researchers from government, FFRDCs, academia, and industry will present new work and discuss important problems in the area of malware. Hear keynote speakers and panels of experts, and participate in discussions with top professionals in reverse engineering, incident response, trends analysis, and research. Visit the MTEM site to register!