Cybersecurity

Pentagon exploring methods to mitigate insider threats

Placeholder Image for Article Template

The Pentagon is researching how best to identify and prevent the next Edward Snowden or Bradley (Chelsea) Manning-level insider threat.

In a request for information made public Nov. 22, the Defense Department aims to gauge the capabilities, experience, knowledge and abilities of contractors qualified to participate in its internal security threat program.

No doubt expedited by unauthorized disclosures from Snowden, a former National Security Agency contractor, and Manning, an Army private who leaked 250,000 documents, the request ultimately stems from an executive order issued by President Barack Obama on Oct. 7, 2011.

Executive Order 13587 directed the government to ensure the responsible sharing and safeguarding of classified national security information within and between federal agencies, prompting other policy directives, including the National Insider Threat Policy.

The latest request, which asked for responses from contractors by Dec. 6, is likely just the next stage in handling insider threats, and information received from this RFI could be used to issue a request for proposals in the near future. Specifically, the Pentagon seeks:

  • Counterintelligence-focused support to investigations involving, but not limited to espionage, sabotage, treason, terrorism and insider threat; conduct inquiries to identify and develop insider threat leads for possible referral to investigators; conduct background records reviews to identify past behaviors relevant to the issue under inquiry; provide comprehensive written reports as required; review results of data analysis of insider threat auditing and monitoring software systems to detect, identify and refer threats to the appropriate entities.
  • Provide subject matter expertise in the security clearance process to include adjudication of clearances, processing of security information files, and suspension of clearances for violating security protocols to support documenting violations or attempts to bypass or circumvent the activities and systems identified above.
  • Conduct data analysis of auditing and monitoring software to detect, identify and refer threats to the appropriate entities.
  • Support development and implementation of security measures that protect the handling, storing, processing, and transfer of classified information.

About the Author

Frank Konkel is a former staff writer for FCW.

The 2015 Federal 100

Meet 100 women and men who are doing great things in federal IT.

Featured

  • Shutterstock image (by venimo): e-learning concept image, digital content and online webinar icons.

    Can MOOCs make the grade for federal training?

    Massive open online courses can offer specialized IT instruction on a flexible schedule and on the cheap. That may not always mesh with government's preference for structure and certification, however.

  • Shutterstock image (by edel): graduation cap and diploma.

    Cybersecurity: 6 schools with the right stuff

    The federal government craves more cybersecurity professionals. These six schools are helping meet that demand.

  • Rick Holgate

    Holgate to depart ATF

    Former ACT president will take a job with Gartner, follow his spouse to Vienna, Austria.

  • Are VA techies slacking off on Yammer?

    A new IG report cites security and productivity concerns associated with employees' use of the popular online collaboration tool.

  • Shutterstock image: digital fingerprint, cyber crime.

    Exclusive: The OPM breach details you haven't seen

    An official timeline of the Office of Personnel Management breach obtained by FCW pinpoints the hackers’ calibrated extraction of data, and the government's step-by-step response.

  • Stephen Warren

    Deputy CIO Warren exits VA

    The onetime acting CIO at Veterans Affairs will be taking over CIO duties at the Office of the Comptroller of the Currency.

  • Shutterstock image: monitoring factors of healthcare.

    DOD awards massive health records contract

    Leidos, Accenture and Cerner pull off an unexpected win of the multi-billion-dollar Defense Healthcare Management System Modernization contract, beating out the presumptive health-records leader.

  • Sweating the OPM data breach -- Illustration by Dragutin Cvijanovic

    Sweating the stolen data

    Millions of background-check records were compromised, OPM now says. Here's the jaw-dropping range of personal data that was exposed.

  • FCW magazine

    Let's talk about Alliant 2

    The General Services Administration is going to great lengths to gather feedback on its IT services GWAC. Will it make for a better acquisition vehicle?

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above