Insider Threat: Protecting the Enterprise from Sabotage, Spying, and Theft
By Dr. Eric Cole and Sandra Ring
HIGHLIGHT
Recent studies conducted by federal law enforcement agencies and universities including the Secret Service, FBI, NSA, and George Washington University have identified the “insider threat” as one of the most dangerous challenges facing corporate and government IT security staffs today. Written by former CIA employees, this book discusses how unless properly monitored and secured, disgruntled current and former employees and contractors can use their inside knowledge of a target network to carry out acts of sabotage, espionage, and theft of data. |
Prevent Employees and Contractors from Stealing Corporate Data
Date: Dec 2005
Pages: 350 (est.)
User level: All
|
DESCRIPTION
This book will teach IT professional and law enforcement officials about the dangers posed by insiders to their IT infrastructure and how to mitigate these risks by designing and implementing secure IT systems as well as security and human resource policies. The book will begin by identifying the types of insiders who are most likely to pose a threat. Next, the reader will learn about the variety of tools and attacks used by insiders to commit their crimes including: encryption, steganography, and social engineering. The book will then specifically address the dangers faced by corporations and government agencies. Finally, the reader will learn how to design effective security systems to prevent insider attacks and how to investigate insider security breeches that do occur. Throughout the book, the authors will use their backgrounds in the CIA to analyze several, high-profile cases involving insider threats.
KEY
SELLING POINTS
- The Secret Service, FBI, NSA, CERT (Computer Emergency Response Team) and George Washington University have all identified “Insider Threats” as one of the most significant challenges facing IT, security, law enforcement, and intelligence professionals today.
- Both co-authors worked for several years at the CIA, and they use this experience to analyze several high-profile cases involving insider threat attacks.
- Despite the frequency and harm caused by insider attacks, there are no competing books on this topic.
MARKET
INFORMATION
Any organization utilizing computers in their day to day operations is potentially a target for an act of theft, sabotage, or espionage perpetrated by an insider. Recent research by federal intelligence agencies and educational institutions has identified insider threats as one of the fastest growing areas of attack faced by security and IT professionals.
ABOUT
THE AUTHOR
Dr. Eric Cole is a highly sought after network security consultant and speaker. He has consulted for international banks, Fortune 500 companies and provided advice to Venture Capitalist Firms on what startups should be funded. He has in-depth knowledge of network security and has come up with creative ways to secure clients assets. He is author of several books including Hackers Beware and Hiding in Plain Sight. Dr. Cole holds several patents and has written numerous magazine and journal articles. Eric worked for the CIA for over 7 years and has created several successful network security practices. Eric is a member of the HoneyNet project and the CVE Editorial board; both are invited positions. Eric presents at a variety of conferences including SANS where he helped created several of the courses. Eric has been interviewed by CBS news, 60 minutes and CNN. He is currently director of research and the chief scientist for The Sytex Group.
Sandy Ring is the Deputy Directory for Research at the TSGI Advanced Technology Research Center. She guides a team of professionals on the cutting edge of computer and network security. Prior to this she worked for the CIA, operated closely with the NSA, and conducted research at the NASA Langley Research Center. She has received many prestigious awards throughout her career including a Service Medal from the CIA and the Studeman Award for Telecommunications Excellence. Sandy's publications range in topic from artificial intelligence to network security.
TECHNOLOGY
BACKGROUND
The actions of a single insider can cause extensive financial damage or irreparable damage to an organization’s data, systems, business operations, or reputation. These individuals who were, or previously had been, authorized to use the information systems they eventually employed to perpetrate harm. Insiders pose a substantial threat by virtue of their knowledge of, and access to, employer systems and/or databases. The majority of the insiders who commit acts of sabotage were former employees who had held technical positions with the targeted organizations.
|
