Insider Threat Cybersecurity Framework Webtool & Methodology: Defending Against Complex Cyber-Physical Threats
- BATTELLE (PACIFIC NW LAB)
The paper demonstrates how the Insider Threat Cybersecurity Framework (ITCF) web tool and methodology help provide a more dynamic, defense-in-depth security posture against insider cyber-physical threats. ITCF includes over 30 cyber-physical security best practices to help organizations identify, protect, detect, respond and recover to sophisticated insider threats and vulnerabilities. The following paper tests the efficacy of this approach and helps validate and verify ITCF’s capabilities and features through various insider attacks use-cases. Three different investment scenarios and explored to determine how an organization can most efficiently leverage ICTF to increase their overall security posture against insider attacks. ITCF also facilitates implementation of the goals outlined in Presidential Executive Order (EO) on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure (May 2017): To help owners and operators of critical infrastructure identify, protect, detect, respond, and recover cyber threats. ITCF helps organizations with the following features: provides an easy to use rapid assessment tool to perform an insider threat self-assessment; determines the current insider threat cybersecurity posture; defines investment based goals to achieve a target state; connects the cybersecurity posture with business processes, functions, and continuity; and finally, helps develop plans to answer critical organizational cybersecurity questions. In this paper, the webtool and its core capabilities are depicted by performing an extensive comparative assessment over two different high-profile insider threat incidents.
- Research Organization:
- Pacific Northwest National Lab. (PNNL), Richland, WA (United States)
- Sponsoring Organization:
- USDOE
- DOE Contract Number:
- AC05-76RL01830
- OSTI ID:
- 1526313
- Report Number(s):
- PNNL-SA-131026
- Resource Relation:
- Conference: IEEE Security and Privacy Workshops (SPW 2018), May 24, 2018, San Francisco, CA
- Country of Publication:
- United States
- Language:
- English
Similar Records
Demonstration of the Cybersecurity Framework through Real-world Cyber Attack
Cybersecurity Framework Tool and Training Game Help Utilities ID Cyber Attack Vulnerabilities