Email this Article Email   

CHIPS Articles: National Insider Threat Task Force Releases Insider Threat Program Maturity Framework

National Insider Threat Task Force Releases Insider Threat Program Maturity Framework
By Office of the Director of National Intelligence - November 7, 2018
The National Insider Threat Task Force (NITTF), operating under the joint leadership of the Attorney General and the Director of National Intelligence, announced release of the “Insider Threat Program Maturity Framework” Nov. 1 at the NITTF’s semiannual Insider Threat Community Forum held at the J. Edgar Hoover Building, the headquarters of the Federal Bureau of Investigation in Washington, D.C.

The “National Insider Threat Policy and Minimum Standards for Executive Branch Insider Threat Programs,” issued by the White House in November 2012, provides executive branch departments and agencies with the minimum elements necessary to establish functional insider threat programs. These minimum standards serve as the foundation of the insider threat program maturity process.

The Framework, as it is known, is designed to help executive branch departments and agencies’ insider threat programs advance beyond the minimum standards to become more proactive, comprehensive, and better postured to deter, detect, and mitigate insider threat risk. The Framework identifies key elements within the existing minimum standards construct that, when enhanced, enable departments and agencies to increase program functionality and garner greater benefits from insider threat program resources, procedures, and processes. Each element within the Framework has been identified as a capability or attribute exhibited by an advanced insider threat program.

The Maturity Framework was developed via a series of working group sessions held in the fall 2017 to solicit ideas from the U.S. government’s insider threat community. Feedback from these sessions led to the development of a draft framework that was based on the capability maturity model process improvement approach used in private industry. The resulting Framework was vetted through a series of NITTF-hosted focus groups held in spring 2018. The groups included representatives from the Intelligence Community, Department of Defense and federal partner insider threat programs.

NITTF is co-directed by the FBI and the National Counterintelligence and Security Center. It was established in October 2011 by Executive Order 13587 which directed federal departments and agencies with access to classified information to establish insider threat detection and prevention programs. The NITTF was established to assist agencies in developing and implementing these programs.

The Framework and FAQs, as well as additional information on the NITTF and its mission, can be found at https://www.dni.gov/index.php/ncsc-how-we-work/ncsc-nittf

Related CHIPS Articles
Related DON CIO News
Related DON CIO Policy

CHIPS is an official U.S. Navy website sponsored by the Department of the Navy (DON) Chief Information Officer, the Department of Defense Enterprise Software Initiative (ESI) and the DON's ESI Software Product Manager Team at Space and Naval Warfare Systems Center Pacific.

Online ISSN 2154-1779; Print ISSN 1047-9988
Hyperlink Disclaimer