Organizational Security Resiliency Management Governing for Enterprise Security Information Security Assessments and Evaluations OCTAVE® Threat Analysis and Modeling Insider Threat   Publications CatalogHistorical Documents

Insider Threat: Presentations Best Practices For Mitigating Insider Threat: Lessons Learned From 250 Cases (pdf) RSA Conference April 23, 2009 Risk Mitigation Strategies: Lessons Learned from Actual Attacks (pdf) RSA Conference - April 8, 2008 CSI Computer Security Conference and Exhibition Presentation November 2007 Insider Threats in the SDLC: Lessons Learned From Actual Incidents of Fraud, Theft of Sensitive Information, and IT Sabotage (pdf) SEPG Conference in Austin, TX - March 27, 2007 A Risk Mitigation Model: Lessons Learned From Actual Insider Sabotage (pdf) CSI Conference in Orlando, FL - November 7, 2006 Pay Attention! What are Your Employees Doing? (pdf) Information Security Summit in Independence, OH - October 27, 2006 Preventing Insider Sabotage: Lessons Learned from Actual Attacks (pdf) CSI Conference in Washington D.C. - November 14, 2005 Insider Threat: Real Data on a Real Problem (pdf) CSI Conference in Washington D.C. - November 9, 2004 Last updated October 19, 2009