Insider Threat Awareness Training
This one hour course provides a basic understanding of insider threats within an organization and what employees should be aware of in their responsibilities to protect an organization's critical assets. This course explains how your work can be affected and how you can be targeted by Insider Threats.
This training is based upon the research of the CERT Insider Threat Center of the Software Engineering Institute. The CERT Insider Threat Center has been researching this problem since 2001 in partnership with the Department of Defense, the Department of Homeland Security, the U.S, Secret Service, other federal agencies, the intelligence community, private industry, academia, and the vendor community. This training is necessary for compliance with the anticipated guidelines set forth in the National Industrial Security Program Operating Manual (NISPOM) in accordance with Executive Order 13587.
Who Should Attend?
All Employees (Especially Those With Security Clearance)
Insider Threat Program Team Members
Insider Threat Program Managers
Contractors and Subcontractors
Suppliers and Business Partners
This self-paced course is available online. The course is comprised of instruction, scenarios that explore how the concepts are applied, and self-assessment.
This elearning course is available for group purchase only. If you wish to purchase this course for a group of learners, please email firstname.lastname@example.org or telephone at +1 412-268-7388 for group rate details.
There are no prerequisites for this course.
The CERT STEP (Simulation, Training, and Exercise Platform) is a flexible, multi-media, e-learning environment that you can access anywhere, anytime. To use STEP effectively, you need the following:
- Web browsers: Internet Explorer 7+ or Firefox 3+
- Adobe Flash version 10+ (for Lecture and Demo access)
- JRE Version 6+ (for lab access)
- Computer system and network settings that allow access to streaming video from internet sources
- Minimum client resolution of 1280x1024 to enable proper Video and Lab Player display
- Internet connection of 384 Kbps or greater (to sustain downloads with no more than 230 ms of latency). STEP does not currently support off-line viewing or content downloads. Operating Systems: Windows 98 / NT 4.0 / Windows 2000 / Windows XP / Windows Vista / Windows 7 / Mac OS X
- Configure your browser to allow pop-ups from https://stepfwd.cert.org
This online course contains one hour of narrated instructional content and includes questions to confirm and reinforce your understanding of the concepts presented. Actual cases are used to demonstrate Insider Threat risk, activity, and consequence. The topics you will study are:
- Insider Threat - It may not be what you think
- What is an Insider Threat and how it affects you
- Types of Insider Threats
- Impacts of being an Insider Threat
- How to protect yourself and your organization
Learners will have one year to complete the course. Upon completing all course elements, the learner is awarded an electronic certificate of course completion.
At the completion of the course, learners will be able to:
- Define an Insider and threats they impose to critical assets
- Recall common motivations of Malicious Insiders
- Name different types of Insider Threats
- Recognize how you can become an Unintentional Insider Threat
- Discuss impacts to your organization, the general public and national security
- Describe the consequences of being a Malicious or Unintentional Insider
- Understand how you can be targeted by a malicious individual as well as external adversaries
- Identify reportable behaviors of Malicious Insiders threats
- Identify steps you can take to protect yourself
- Be aware of actions to take if you see or suspect an Insider Threat
- Recognize resources available to you in your organization
This course is presented in the form of video instruction presented by experts from the CERT Insider Threat Center. Self-assessments following each topic presented assist with comprehension of the subject matter. Learners will also be able to access additional resources related to the subject matter and a downloadable copy of the course presentation slides.
Training courses provided by the SEI are not academic courses for academic credit toward a degree. Any certificates provided are evidence of the completion of the courses and are not official academic credentials.