The ETC/CERT team is working in conjunction with the Software Engineering Institute's CERT team to create an interactive training experience to teach non-technical supervisors how to identify and mitigate insider, computer threats of sabotage.
As society becomes more reliant on digital infrastructure to get things done, insider threats become more of an issue. Within an organization, individuals will have a predisposition to react negatively to stressors and unmet expectations. This will send these individuals into a loop where they act out both behaviorally and technically until they attack the computer system on which they work.
The people in the best position to recognize the warning signs and do something to stop it lack the necessary training and understanding of how to work with the resources available to hinder an attack.
CERT came to the ETC to develop a game prototype that can be used to teach players the necessary skills. We have developed an office simulation in which the player takes the role of a new supervisor. As the supervisor, the player must manage a team of eight employees and locate the potential sabotuer and prevent the attack from taking place. The consequences of failure could cost millions of dollars and the loss of dozens of employees.
The Insider Threat team from CERT has provided the ETC/CERT team with the studies and results they have been gathering for the past six years. We have based our experience on the information given to us. We seek their feedback to ensure that we are accurately portraying the problem and its solutions.
|
