The DHS National Cybersecurity and Communications Integration Center has issued a guide meant to help organizations guard against malicious insider activity.
The guide – Combating the Insider Threat” – includes an expansive list of behavioral characteristics of insiders that could become a threat to the integrity of networks and information security.
Here’s what to watch out for: Introverts, greed or financial need, compulsive behavior, reduced loyalty, a penchant for minimizing one’s mistakes of faults, intolerance to criticism, moral flexibility, a lack of empathy and a pattern of frustration or disappointment.
Those characteristics likely apply on some level to a large percentage of employees in any organization, so perhaps of greater use is a list of commonsensical indicators for malicious threat activity: Remotely accesses the network while on vacation, sick or at odd times; Works odd hours without authorization; Notable enthusiasm for overtime, weekend or unusual work schedules; Unnecessarily copies classified material; Alcohol / drug abuse; and, Shows signs of vulnerability – among others.
http://www.us-cert.gov/security-publications/Combating-Insider-Threat
