Graduate School of Applied Informatics, University of Hyogo
Language: Japanese English
HOME
About the Dual-Degree Program
Campus Location
Admission
Course Description
Faculty Profile
Frequently Asked Questions (FAQ)
Scholarship Programs
Open Seminars

Info-Communication Security
Human Resources Training Center
Site Policy / Privacy Policy
The Information Networking Institute (INI)
Kobe MSIT-IS
Carnegie Mellon University
Dual-Degree Program
Graduate School of Applied Informatics, University of Hyogo
University of Hyogo
Carnegie Mellon CyLab Japan Information Security Seminar
“A Risk Mitigation Model: Lessons Learned From Actual Insider IT Sabotage”
Carnegie Mellon CyLab Japan has invited Ms. Dawn Cappelli, a senior member of the technical staff in CERT at CMU's Software Engineering Institute(SEI), to give a seminar on “A Risk Mitigation Model: Lessons Learned From Actual Insider IT Sabotage” on October 24th, 2007.
Thank you very much for attending.

Seminar Details

1 Date&Time

October 24, 2007(Wednesday) 17:30-19:00

2 Location

Carnegie Mellon CyLab Japan, KHB001
KobeHarborlandCenterBuilding 17F
1-3-3 Higashikawasaki-cho, Chuo-ku, Kobe 650-0044
http://www.cmuj.jp/campus_location_en.html

3 Presentation Details
  • Presentation 17:30-18:30
    		•
    “A Risk Mitigation Model: Lessons Learned From Actual Insider IT Sabotage”
    Ms.Dawn Cappelli
    Senior Member of the Technical Staff in CERT at CMU Software Engineering Institute(SEI)
     
    Abstract:
    An organization's risk due to insider cyber attacks depends on the complex interaction of the organization's business policies and procedures, organizational culture, and technology over time.
    Mitigation of that risk cannot be accomplished in isolation; it requires planning, communication, and interaction between the organization's management, human resources, and information technology departments.
    In collaboration with the U.S. Secret Service and the U.S. Department of Defense, the CERT Insider Threat Team, composed of both technical and psychological experts, has gathered and analyzed over 200 insider threat cases, including cases of IT sabotage, fraud, theft of sensitive or proprietary information, and espionage.
    This presentation will focus on one type of threat that can affect any organization - insider IT sabotage.
    The MERIT model for Management and Education of the Risks of Insider Threat, developed by CERT/CyLab, will be used to demonstrate the "big picture" of the risk insider threat, including

    * the interaction of policies, practices, technology, organizational culture, and insider psychological issues,
    * the escalation of the insider threat problem over time, and
    * key countermeasures to mitigate insider IT sabotage.

    The model will be reinforced by descriptions of actual IT sabotage cases, and the presentation will conclude with a list of 13 best practices for the prevention and detection of all insider threats, to include fraud, theft of confidential and proprietary information, and IT sabotage.
     
    Biography of the speaker:
    http://www.sei.cmu.edu/staff/dmc/
  • Discussion : 18:30-19:00
    		•
    4 Language: The talk will be given in English.
    5 Registration Fee Free of charge (Advanced registration is necessity.)

    Seminar Pictures

    Ms.Dawn Cappelli

    Discussion

    Inquiries
    Carnegie Mellon CyLab Japan
    (Hyogo Institute of Information Education Foundation)
    TEL:078-360-6311
    FAX:078-360-1617
    Email:


    » To top
    » Site Policy / Privacy Policy