The CERT Guide to Insider Threats

How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud)

Nonfiction, Computers, Networking & Communications, Computer Security, Operating Systems, Application Software
Cover of the book The CERT Guide to Insider Threats by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak, Pearson Education
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart
Author: Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak ISBN: 9780132906043
Publisher: Pearson Education Publication: January 20, 2012
Imprint: Addison-Wesley Professional Language: English
Author: Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
ISBN: 9780132906043
Publisher: Pearson Education
Publication: January 20, 2012
Imprint: Addison-Wesley Professional
Language: English

Since 2001, the CERT® Insider Threat Center at Carnegie Mellon University’s Software Engineering Institute (SEI) has collected and analyzed information about more than seven hundred insider cyber crimes, ranging from national security espionage to theft of trade secrets. The CERT® Guide to Insider Threats describes CERT’s findings in practical terms, offering specific guidance and countermeasures that can be immediately applied by executives, managers, security officers, and operational staff within any private, government, or military organization.

 

The authors systematically address attacks by all types of malicious insiders, including current and former employees, contractors, business partners, outsourcers, and even cloud-computing vendors. They cover all major types of insider cyber crime: IT sabotage, intellectual property theft, and fraud. For each, they present a crime profile describing how the crime tends to evolve over time, as well as motivations, attack methods, organizational issues, and precursor warnings that could have helped the organization prevent the incident or detect it earlier. Beyond identifying crucial patterns of suspicious behavior, the authors present concrete defensive measures for protecting both systems and data.

 

This book also conveys the big picture of the insider threat problem over time: the complex interactions and unintended consequences of existing policies, practices, technology, insider mindsets, and organizational culture. Most important, it offers actionable recommendations for the entire organization, from executive management and board members to IT, data owners, HR, and legal departments.

 

With this book, you will find out how to

  • Identify hidden signs of insider IT sabotage, theft of sensitive information, and fraud
  • Recognize insider threats throughout the software development life cycle
  • Use advanced threat controls to resist attacks by both technical and nontechnical insiders
  • Increase the effectiveness of existing technical security tools by enhancing rules, configurations, and associated business processes
  • Prepare for unusual insider attacks, including attacks linked to organized crime or the Internet underground

By implementing this book’s security practices, you will be incorporating protection mechanisms designed to resist the vast majority of malicious insider attacks.

View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart

Since 2001, the CERT® Insider Threat Center at Carnegie Mellon University’s Software Engineering Institute (SEI) has collected and analyzed information about more than seven hundred insider cyber crimes, ranging from national security espionage to theft of trade secrets. The CERT® Guide to Insider Threats describes CERT’s findings in practical terms, offering specific guidance and countermeasures that can be immediately applied by executives, managers, security officers, and operational staff within any private, government, or military organization.

 

The authors systematically address attacks by all types of malicious insiders, including current and former employees, contractors, business partners, outsourcers, and even cloud-computing vendors. They cover all major types of insider cyber crime: IT sabotage, intellectual property theft, and fraud. For each, they present a crime profile describing how the crime tends to evolve over time, as well as motivations, attack methods, organizational issues, and precursor warnings that could have helped the organization prevent the incident or detect it earlier. Beyond identifying crucial patterns of suspicious behavior, the authors present concrete defensive measures for protecting both systems and data.

 

This book also conveys the big picture of the insider threat problem over time: the complex interactions and unintended consequences of existing policies, practices, technology, insider mindsets, and organizational culture. Most important, it offers actionable recommendations for the entire organization, from executive management and board members to IT, data owners, HR, and legal departments.

 

With this book, you will find out how to

By implementing this book’s security practices, you will be incorporating protection mechanisms designed to resist the vast majority of malicious insider attacks.

More books from Pearson Education

Cover of the book Sams Teach Yourself Java in 24 Hours by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book Adobe Flash CS3 Professional How-Tos by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book Getting Started with IBM WebSphere sMash by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book The C++ Standard Library Extensions by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book Process for System Architecture and Requirements Engineering by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book ThinWire¿ Handbook by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book The Lean Mindset by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book .Mac with iWeb, Second Edition by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book Using Person-Centered Health Analytics to Live Longer by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book How Being a Design-Driven Company Will Get You From Good to Great by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book Best Practices for Desktop Publishing by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book The Coaching Manual by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book Designing the iPhone User Experience by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book From Acorns by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
Cover of the book Windows Server 2012 Unleashed by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak
We use our own "cookies" and third party cookies to improve services and to see statistical information. By using this website, you agree to our Privacy Policy