Insider Threat Cybersecurity Framework Webtool & Methodology: Defending Against Complex Cyber-Physical Threats

Mylrea, Michael E.; Gourisetti, Sri Nikhil G.; Larimer, Curtis J.; Noonan, Christine F.

doi:10.1109/SPW.2018.00036

Title: Insider Threat Cybersecurity Framework Webtool & Methodology: Defending Against Complex Cyber-Physical Threats

Conference · Mon Aug 06 00:00:00 EDT 2018

DOI:https://doi.org/10.1109/SPW.2018.00036· OSTI ID:1526313

Mylrea, Michael E. ^[1];

^[1];

^[1]

BATTELLE (PACIFIC NW LAB)

The paper demonstrates how the Insider Threat Cybersecurity Framework (ITCF) web tool and methodology help provide a more dynamic, defense-in-depth security posture against insider cyber-physical threats. ITCF includes over 30 cyber-physical security best practices to help organizations identify, protect, detect, respond and recover to sophisticated insider threats and vulnerabilities. The following paper tests the efficacy of this approach and helps validate and verify ITCF’s capabilities and features through various insider attacks use-cases. Three different investment scenarios and explored to determine how an organization can most efficiently leverage ICTF to increase their overall security posture against insider attacks. ITCF also facilitates implementation of the goals outlined in Presidential Executive Order (EO) on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure (May 2017): To help owners and operators of critical infrastructure identify, protect, detect, respond, and recover cyber threats. ITCF helps organizations with the following features: provides an easy to use rapid assessment tool to perform an insider threat self-assessment; determines the current insider threat cybersecurity posture; defines investment based goals to achieve a target state; connects the cybersecurity posture with business processes, functions, and continuity; and finally, helps develop plans to answer critical organizational cybersecurity questions. In this paper, the webtool and its core capabilities are depicted by performing an extensive comparative assessment over two different high-profile insider threat incidents.

OSTI does not have a digital full text copy available. For more information, please see document availability, search WorldCat, or search Google Scholar.

Cite

Export

Save

Research Organization:: Pacific Northwest National Lab. (PNNL), Richland, WA (United States)

Sponsoring Organization:: USDOE

DOE Contract Number:: AC05-76RL01830

OSTI ID:: 1526313

Report Number(s):: PNNL-SA-131026

Resource Relation:: Conference: IEEE Security and Privacy Workshops (SPW 2018), May 24, 2018, San Francisco, CA

Country of Publication:: United States

Language:: English

Similar Records

Multi-Scenario Use Case based Demonstration of Buildings Cybersecurity Framework Webtool

Conference · Mon Nov 27 00:00:00 EST 2017 · OSTI ID:1526313

Gourisetti, Sri Nikhil G.; Mylrea, Michael E.; Gervais, Easton L.; +1 more

Demonstration of the Cybersecurity Framework through Real-world Cyber Attack

Conference · Mon Dec 30 00:00:00 EST 2019 · OSTI ID:1526313

Gourisetti, Sri Nikhil G.; Mylrea, Michael E.; Ashley, Travis D.; +5 more

Cybersecurity Framework Tool and Training Game Help Utilities ID Cyber Attack Vulnerabilities

Multimedia · Wed Mar 14 00:00:00 EDT 2018 · OSTI ID:1526313

Title: Insider Threat Cybersecurity Framework Webtool & Methodology: Defending Against Complex Cyber-Physical Threats

Citation Formats

Similar Records

Related Subjects