CDSE/Center for Development of Security Excellence 2
Definition
Screen 2 of 13
Screen text: Insider Threat
Sammy: First, we’re going to define insider threat.
An insider threat is anyone with authorized access who uses that access to wittingly or
unwittingly cause harm to an organization and its resources including information, personnel,
and facilities.
A cyber threat is simply defined as the possibility of a malicious attempt to damage or disrupt a
computer network or system. However, this is just the beginning.
So much of our lives and our business are conducted on line – cyber-attacks are often the first
step in a larger attempt to commit a variety of acts such as fraud, theft, sabotage, espionage, copy
right and intellectual property violations, just to name a few.
Threats and Targets
Screen 3 of 13
Sammy: To begin our talk about cyber threats, here's an excerpt from former FBI Director,
James Comey's, remarks about cyber security.
Director Comey: "Let me start with the threat. I actually try to describe to people in very simple
ways what we're talking about today because I don't see cyber as a thing, I see it as a way. As a
vector. Because my children play on the Internet. Because that's where I bank. Because that's
where my health care is. Because that's — I don't have a social life, but if I had one, that's where
I'm sure it would be. That's where our nation's critical infrastructure is, that's where our
government's secrets are and that's - because life is there - that's where bad people come who
want to hurt children, who want to steal money, who want to take identities, who want to steal
secrets, who want to damage dams and critical infrastructure in the United States. It's the way
they come at us because that's where life is.
I harken back to what I believe was the great vector change that gave birth to the FBI. And this
popped in my head when I was visiting the field office that we have in Indianapolis. A local
sheriff gave me a round that had been fired from John Dillinger's Thompson submachine gun. It
occurred to me that the great vector change of the 1920's into the 1930's was the confluence of
the automobile and asphalt. It gave birth to an entirely new way of doing bad things.
Suddenly criminals could move at breathtaking speeds, right? Forty miles an hour. Fifty
downhill. Right? They could go from Ohio to Indiana to Illinois in the same day and do bank
robberies in each of those locations. They were blowing away traditional notions of county line
and state line. Right? It was straining the framework that law enforcement used and so a national
force was needed and there was — I'm the seventh director — there was the first director of the
FBI, J. Edgar Hoover. And a national force was born to respond to that entirely new way of